Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/1037820?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "type": "deb", "namespace": "debian", "name": "qemu", "version": "1:3.1+dfsg-8+deb10u8", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "1:10.0.2+ds-2+deb13u1~bpo12+1", "latest_non_vulnerable_version": "1:11.0.0+ds-1", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31748?format=api", "vulnerability_id": "VCID-145f-vwpy-ukfg", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7039.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7039.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-7039", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74514", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74519", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74546", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.7452", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74552", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74568", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.7459", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74571", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74563", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.746", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74607", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74599", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74635", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74641", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74643", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-7039" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551", "reference_id": "1791551", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949084", "reference_id": "949084", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949084" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949085", "reference_id": "949085", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949085" }, { "reference_url": "https://security.gentoo.org/glsa/202005-02", "reference_id": "GLSA-202005-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0348", "reference_id": "RHSA-2020:0348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0775", "reference_id": "RHSA-2020:0775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1116", "reference_id": "RHSA-2020:1116", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1116" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1150", "reference_id": "RHSA-2020:1150", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1150" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1261", "reference_id": "RHSA-2020:1261", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1296", "reference_id": "RHSA-2020:1296", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1296" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1300", "reference_id": "RHSA-2020:1300", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1300" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1344", "reference_id": "RHSA-2020:1344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1351", "reference_id": "RHSA-2020:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1352", "reference_id": "RHSA-2020:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1358", "reference_id": "RHSA-2020:1358", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1358" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1360", "reference_id": "RHSA-2020:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2342", "reference_id": "RHSA-2020:2342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2730", "reference_id": "RHSA-2020:2730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2730" }, { "reference_url": "https://usn.ubuntu.com/4283-1/", "reference_id": "USN-4283-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4283-1/" }, { "reference_url": "https://usn.ubuntu.com/4632-1/", "reference_id": "USN-4632-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4632-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-7039" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-145f-vwpy-ukfg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61632?format=api", "vulnerability_id": "VCID-14d3-jbv3-xbbe", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10761.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10761.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10761", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74672", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74675", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74701", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74676", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74708", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74723", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74746", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74725", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74716", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74753", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74761", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74751", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74786", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74793", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00841", "scoring_system": "epss", "scoring_elements": "0.74796", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10761" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10761", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10761" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843707", "reference_id": "1843707", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843707" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-10761" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-14d3-jbv3-xbbe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40980?format=api", "vulnerability_id": "VCID-1g7f-6q39-fyhx", "summary": "Multiple vulnerabilities have been found in libslirp, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3593.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3593.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3593", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05868", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05994", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05954", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05988", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.059", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05934", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05923", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05816", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05841", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05819", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.0581", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05804", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05768", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05775", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00022", "scoring_system": "epss", "scoring_elements": "0.05921", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3593" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3593", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3593" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970487", "reference_id": "1970487", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970487" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989994", "reference_id": "989994", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989994" }, { "reference_url": "https://security.archlinux.org/ASA-202106-49", "reference_id": "ASA-202106-49", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-49" }, { "reference_url": "https://security.archlinux.org/AVG-2073", "reference_id": "AVG-2073", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2073" }, { "reference_url": "https://security.gentoo.org/glsa/202107-44", "reference_id": "GLSA-202107-44", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-44" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4191", "reference_id": "RHSA-2021:4191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4191" }, { "reference_url": "https://usn.ubuntu.com/5009-1/", "reference_id": "USN-5009-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-1/" }, { "reference_url": "https://usn.ubuntu.com/5009-2/", "reference_id": "USN-5009-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-2/" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3593" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1g7f-6q39-fyhx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81711?format=api", "vulnerability_id": "VCID-28wt-9aqz-xqbg", "summary": "qemu: OOB read and write due to integer overflow in sm501_2d_operation() in hw/display/sm501.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12829.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12829.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.3059", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30726", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30774", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30649", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30682", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30686", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30641", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30596", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30622", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30604", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.3057", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30391", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30276", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30197", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1808510", "reference_id": "1808510", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1808510" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961451", "reference_id": "961451", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961451" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-12829" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-28wt-9aqz-xqbg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35420?format=api", "vulnerability_id": "VCID-29bt-r6ya-jfhu", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20263.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20263.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20263", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32842", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32971", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.33005", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32828", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32875", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32904", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32907", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.3287", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32844", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32886", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32864", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32679", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32564", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32479", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20263" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20263", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20263" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1933668", "reference_id": "1933668", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1933668" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985083", "reference_id": "985083", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=985083" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-20263" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-29bt-r6ya-jfhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81402?format=api", "vulnerability_id": "VCID-29d8-uet3-syfh", "summary": "QEMU: heap buffer overflow in iscsi_aio_ioctl_cb() in block/iscsi.c may lead to information disclosure", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11947.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11947.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16404", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16586", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16649", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16449", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16535", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16589", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1657", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1653", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16471", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16412", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16433", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1647", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16363", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16362", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16317", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1912765", "reference_id": "1912765", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1912765" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0648", "reference_id": "RHSA-2021:0648", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0648" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-11947" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-29d8-uet3-syfh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62359?format=api", "vulnerability_id": "VCID-3ew5-8dfe-u3d8", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could lead to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1544.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1544.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1544", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18892", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19273", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19132", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19079", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19037", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19049", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19058", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18951", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.18935", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19324", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19039", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19119", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19172", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00061", "scoring_system": "epss", "scoring_elements": "0.19178", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1544" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034179", "reference_id": "1034179", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034179" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2180364", "reference_id": "2180364", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:10:20Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2180364" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-1544", "reference_id": "CVE-2023-1544", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:10:20Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-1544" }, { "reference_url": "https://security.gentoo.org/glsa/202408-18", "reference_id": "GLSA-202408-18", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-18" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2023-03/msg00206.html", "reference_id": "msg00206.html", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:10:20Z/" } ], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2023-03/msg00206.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230511-0005/", "reference_id": "ntap-20230511-0005", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-19T18:10:20Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230511-0005/" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994614?format=api", "purl": "pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-hkf8-96k7-kuc9" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-vcun-y6d5-6uby" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18" } ], "aliases": [ "CVE-2023-1544" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3ew5-8dfe-u3d8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80642?format=api", "vulnerability_id": "VCID-3wee-2xay-r7bt", "summary": "QEMU: block: fdc: null pointer dereference may lead to guest crash", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20196.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20196.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20196", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11722", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11841", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11884", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11671", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11756", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11809", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11821", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11782", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11621", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1162", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11741", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11705", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11667", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11592", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20196" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20196", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20196" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1919210", "reference_id": "1919210", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1919210" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984453", "reference_id": "984453", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984453" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0325", "reference_id": "RHSA-2022:0325", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0325" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0397", "reference_id": "RHSA-2022:0397", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0397" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1759", "reference_id": "RHSA-2022:1759", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1759" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-20196" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3wee-2xay-r7bt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78124?format=api", "vulnerability_id": "VCID-4848-dnv8-bqez", "summary": "QEMU: use-after-free in TCG accelerator can lead to local privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24165.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24165.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-24165", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62414", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62472", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62504", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62471", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62523", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62539", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62558", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62546", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62565", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62571", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62552", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62562", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62578", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00429", "scoring_system": "epss", "scoring_elements": "0.62575", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-24165" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24165", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24165" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235745", "reference_id": "2235745", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2235745" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-24165" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4848-dnv8-bqez" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61633?format=api", "vulnerability_id": "VCID-4d66-e766-q7ch", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13253.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13253.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13253", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30378", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30408", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30453", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30261", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30321", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30355", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30358", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30314", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30266", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30281", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30263", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30219", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30154", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30038", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.29964", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13253" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13253", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13253" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1838546", "reference_id": "1838546", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1838546" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961297", "reference_id": "961297", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961297" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13253" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4d66-e766-q7ch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35416?format=api", "vulnerability_id": "VCID-4unz-8jyy-qfdc", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4206.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4206.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4206", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0016", "scoring_system": "epss", "scoring_elements": "0.36992", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0016", "scoring_system": "epss", "scoring_elements": "0.37027", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0016", "scoring_system": "epss", "scoring_elements": "0.36855", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0016", "scoring_system": "epss", "scoring_elements": "0.36906", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0016", "scoring_system": "epss", "scoring_elements": "0.36835", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.36989", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.36758", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.36727", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.3664", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.37071", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.37081", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.37047", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.3702", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00161", "scoring_system": "epss", "scoring_elements": "0.37066", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036998", "reference_id": "2036998", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036998" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5002", "reference_id": "RHSA-2022:5002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5821", "reference_id": "RHSA-2022:5821", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5821" }, { "reference_url": "https://usn.ubuntu.com/5489-1/", "reference_id": "USN-5489-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5489-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-4206" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4unz-8jyy-qfdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81665?format=api", "vulnerability_id": "VCID-5t1d-ve8h-9ba1", "summary": "QEMU: division by zero in oss_write() in audio/ossaudio.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14415.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14415.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14415", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15427", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15467", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15537", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15337", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15424", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15474", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15435", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15396", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15331", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.1525", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15254", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15305", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15345", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15342", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15287", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14415" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14415", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14415" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1848117", "reference_id": "1848117", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1848117" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-14415" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5t1d-ve8h-9ba1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40979?format=api", "vulnerability_id": "VCID-5ur6-6ec3-p7bt", "summary": "Multiple vulnerabilities have been found in libslirp, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3592.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3592.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3592", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07033", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07056", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07047", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06987", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06972", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07106", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07072", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0703", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07062", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07068", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07174", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07219", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07198", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07054", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3592" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3592", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3592" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970484", "reference_id": "1970484", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970484" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989993", "reference_id": "989993", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989993" }, { "reference_url": "https://security.archlinux.org/ASA-202106-49", "reference_id": "ASA-202106-49", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-49" }, { "reference_url": "https://security.archlinux.org/AVG-2073", "reference_id": "AVG-2073", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2073" }, { "reference_url": "https://security.gentoo.org/glsa/202107-44", "reference_id": "GLSA-202107-44", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-44" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4191", "reference_id": "RHSA-2021:4191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4191" }, { "reference_url": "https://usn.ubuntu.com/5009-1/", "reference_id": "USN-5009-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-1/" }, { "reference_url": "https://usn.ubuntu.com/5009-2/", "reference_id": "USN-5009-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-2/" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3592" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5ur6-6ec3-p7bt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61635?format=api", "vulnerability_id": "VCID-6ef4-c38a-j7ca", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13362.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13362.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26973", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27014", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2705", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26841", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26909", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26956", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2696", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26916", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26859", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26871", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26842", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26803", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26745", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26737", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26667", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840999", "reference_id": "1840999", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840999" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961887", "reference_id": "961887", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961887" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13362" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6ef4-c38a-j7ca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80756?format=api", "vulnerability_id": "VCID-6fs3-3a9w-xycq", "summary": "QEMU: slirp: out-of-bounds access while processing ARP/NCSI packets", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29130.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29130.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29130", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64386", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.6454", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64528", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64541", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.6444", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64471", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.6443", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64477", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64494", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64509", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64498", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64469", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64504", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64516", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00468", "scoring_system": "epss", "scoring_elements": "0.64508", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29130" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29130", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29130" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902231", "reference_id": "1902231", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902231" }, { "reference_url": "https://security.archlinux.org/ASA-202012-7", "reference_id": "ASA-202012-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202012-7" }, { "reference_url": "https://security.archlinux.org/AVG-1305", "reference_id": "AVG-1305", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/5009-1/", "reference_id": "USN-5009-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-29130" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6fs3-3a9w-xycq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61634?format=api", "vulnerability_id": "VCID-6hqu-ecs5-zqeb", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13361.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13361.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26973", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27014", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2705", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26841", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26909", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26956", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2696", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26916", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26859", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26871", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26842", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26803", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26745", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26737", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26667", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840980", "reference_id": "1840980", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840980" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961888", "reference_id": "961888", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961888" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13361" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6hqu-ecs5-zqeb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40982?format=api", "vulnerability_id": "VCID-6pkj-axqp-duf1", "summary": "Multiple vulnerabilities have been found in libslirp, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3595.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3595.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3595", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06142", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06264", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06223", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06254", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06179", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0621", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06192", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0607", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06109", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06099", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06094", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06086", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06051", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0606", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06209", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3595" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970489", "reference_id": "1970489", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970489" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989996", "reference_id": "989996", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989996" }, { "reference_url": "https://security.archlinux.org/ASA-202106-49", "reference_id": "ASA-202106-49", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-49" }, { "reference_url": "https://security.archlinux.org/AVG-2073", "reference_id": "AVG-2073", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2073" }, { "reference_url": "https://security.gentoo.org/glsa/202107-44", "reference_id": "GLSA-202107-44", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-44" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4191", "reference_id": "RHSA-2021:4191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4191" }, { "reference_url": "https://usn.ubuntu.com/5009-1/", "reference_id": "USN-5009-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-1/" }, { "reference_url": "https://usn.ubuntu.com/5009-2/", "reference_id": "USN-5009-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-2/" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3595" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6pkj-axqp-duf1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78336?format=api", "vulnerability_id": "VCID-6xcc-y2jp-nufx", "summary": "QEMU: net: triggerable assertion due to race condition in hot-unplug", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3301.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3301.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3301", "reference_id": "", "reference_type": "", "scores": [ { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00317", "published_at": "2026-04-29T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.0034", "published_at": "2026-04-02T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00297", "published_at": "2026-04-16T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00322", "published_at": "2026-04-21T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00323", "published_at": "2026-04-24T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.0032", "published_at": "2026-04-26T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00339", "published_at": "2026-04-04T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.0033", "published_at": "2026-04-07T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00328", "published_at": "2026-04-08T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00304", "published_at": "2026-04-09T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00303", "published_at": "2026-04-12T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00302", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3301" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3301", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3301" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215784", "reference_id": "2215784", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T17:39:47Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215784" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openstack:13", "reference_id": "cpe:/a:redhat:openstack:13", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openstack:13" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-3301", "reference_id": "CVE-2023-3301", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T17:39:47Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-3301" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20231020-0008/", "reference_id": "ntap-20231020-0008", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T17:39:47Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20231020-0008/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6980", "reference_id": "RHSA-2023:6980", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6980" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2023-3301" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6xcc-y2jp-nufx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78311?format=api", "vulnerability_id": "VCID-7mhs-m1r3-n3ag", "summary": "QEMU: VNC: improper I/O watch removal in TLS handshake can lead to remote unauthenticated denial of service", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3354.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3354.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3354", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20788", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20751", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20812", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.2083", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20736", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20727", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20721", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.2096", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00067", "scoring_system": "epss", "scoring_elements": "0.20674", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21359", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28867", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28754", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28683", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28986", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3354" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216478", "reference_id": "2216478", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216478" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5094", "reference_id": "RHSA-2023:5094", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5094" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5239", "reference_id": "RHSA-2023:5239", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5239" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5264", "reference_id": "RHSA-2023:5264", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5264" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5587", "reference_id": "RHSA-2023:5587", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5587" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5796", "reference_id": "RHSA-2023:5796", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5796" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6227", "reference_id": "RHSA-2023:6227", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6227" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0404", "reference_id": "RHSA-2024:0404", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0404" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2023-3354" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7mhs-m1r3-n3ag" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35391?format=api", "vulnerability_id": "VCID-7w6v-ewcn-kkdz", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3416.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3416.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3416", "reference_id": "", "reference_type": "", "scores": [ { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00333", "published_at": "2026-04-01T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00338", "published_at": "2026-04-02T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00336", "published_at": "2026-04-04T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00328", "published_at": "2026-04-07T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00325", "published_at": "2026-04-11T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00326", "published_at": "2026-04-09T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00323", "published_at": "2026-04-12T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00322", "published_at": "2026-04-18T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00317", "published_at": "2026-04-16T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00343", "published_at": "2026-04-24T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00342", "published_at": "2026-04-26T12:55:00Z" }, { "value": "6e-05", "scoring_system": "epss", "scoring_elements": "0.00337", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3416" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3416", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3416" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932827", "reference_id": "1932827", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1932827" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984448", "reference_id": "984448", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984448" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3061", "reference_id": "RHSA-2021:3061", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3061" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3703", "reference_id": "RHSA-2021:3703", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3703" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3416" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7w6v-ewcn-kkdz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81243?format=api", "vulnerability_id": "VCID-7zkh-xs1s-guh6", "summary": "QEMU: slirp: networking out-of-bounds read information disclosure vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10756.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10756.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06882", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06768", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06759", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06903", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06888", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0691", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06797", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06835", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0684", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06833", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06826", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.06998", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07052", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07032", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.06894", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835986", "reference_id": "1835986", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835986" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3586", "reference_id": "RHSA-2020:3586", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3586" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4059", "reference_id": "RHSA-2020:4059", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4059" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4694", "reference_id": "RHSA-2020:4694", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4694" }, { "reference_url": "https://usn.ubuntu.com/4437-1/", "reference_id": "USN-4437-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4437-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-10756" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7zkh-xs1s-guh6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81447?format=api", "vulnerability_id": "VCID-8cnu-b5en-7ye3", "summary": "qemu: integer overflow in ati_2d_blt() in hw/display/ati-2d.c could lead to DoS", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11869.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11869.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11869", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26016", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.261", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.2614", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25906", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25974", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26026", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26036", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25991", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25932", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25937", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25918", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25889", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25823", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25817", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25771", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11869" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11869", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11869" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1809955", "reference_id": "1809955", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1809955" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-11869" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8cnu-b5en-7ye3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82268?format=api", "vulnerability_id": "VCID-8jjd-u5mc-zbde", "summary": "qemu: scsi: lsi: potential infinite loop when executing script in lsi_execute_script", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12068.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12068.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24813", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24604", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24719", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24659", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24648", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24892", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24931", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24706", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24773", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.2482", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24833", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24794", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24737", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24749", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24742", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=de594e47659029316bbf9391efb79da0a1a08e08", "reference_id": "", "reference_type": "", "scores": [], "url": "https://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=de594e47659029316bbf9391efb79da0a1a08e08" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00020.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00020.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01518.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01518.html" }, { "reference_url": "https://security-tracker.debian.org/tracker/CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security-tracker.debian.org/tracker/CVE-2019-12068" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4665" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1773749", "reference_id": "1773749", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1773749" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:2.1\\+dfsg-12\\+deb8u6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:2.1\\+dfsg-12\\+deb8u6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:2.1\\+dfsg-12\\+deb8u6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:2.8\\+dfsg-6\\+deb9u8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:2.8\\+dfsg-6\\+deb9u8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:2.8\\+dfsg-6\\+deb9u8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\~deb10u1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\~deb10u1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\~deb10u1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\+deb10u2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\+deb10u2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\+deb10u2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:4.1-1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:4.1-1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:4.1-1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-12068", "reference_id": "CVE-2019-12068", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-12068" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-12068" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8jjd-u5mc-zbde" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82101?format=api", "vulnerability_id": "VCID-8kzh-2gr5-e7gu", "summary": "QEMU: out-of-bounds read in ati_cursor_define() function in hw/display/ati.c leads to DoS", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20808.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20808.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20808", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31143", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.3127", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31312", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31131", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31184", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31215", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.3122", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31177", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31133", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31165", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31146", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31115", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.30955", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.30834", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.30749", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20808" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20808", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20808" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1841136", "reference_id": "1841136", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1841136" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-20808" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8kzh-2gr5-e7gu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/74461?format=api", "vulnerability_id": "VCID-91y7-ceje-jbd3", "summary": "QEMU: Denial of Service via Improper Synchronization in QEMU NBD Server During Socket Closure", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7409.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7409.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-7409", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01704", "scoring_system": "epss", "scoring_elements": "0.82375", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01704", "scoring_system": "epss", "scoring_elements": "0.8236", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01704", "scoring_system": "epss", "scoring_elements": "0.82371", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82257", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82276", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82271", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82298", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82305", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82324", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82318", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82313", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01706", "scoring_system": "epss", "scoring_elements": "0.82347", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0175", "scoring_system": "epss", "scoring_elements": "0.82598", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-7409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7409" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302487", "reference_id": "2302487", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2302487" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el8", "reference_id": "cpe:/a:redhat:openshift:4.13::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el9", "reference_id": "cpe:/a:redhat:openshift:4.13::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.13::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el8", "reference_id": "cpe:/a:redhat:openshift:4.14::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el9", "reference_id": "cpe:/a:redhat:openshift:4.14::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.14::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el8", "reference_id": "cpe:/a:redhat:openshift:4.15::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el9", "reference_id": "cpe:/a:redhat:openshift:4.15::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.15::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.16::el9", "reference_id": "cpe:/a:redhat:openshift:4.16::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.16::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.17::el9", "reference_id": "cpe:/a:redhat:openshift:4.17::el9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:openshift:4.17::el9" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-7409", "reference_id": "CVE-2024-7409", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-7409" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:10518", "reference_id": "RHSA-2024:10518", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:10518" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:10528", "reference_id": "RHSA-2024:10528", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:10528" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:6811", "reference_id": "RHSA-2024:6811", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:6811" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:6964", "reference_id": "RHSA-2024:6964", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:6964" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:7408", "reference_id": "RHSA-2024:7408", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:7408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9136", "reference_id": "RHSA-2024:9136", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9136" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9912", "reference_id": "RHSA-2024:9912", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-06T20:16:55Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9912" }, { "reference_url": "https://usn.ubuntu.com/7744-1/", "reference_id": "USN-7744-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7744-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994614?format=api", "purl": "pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-hkf8-96k7-kuc9" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-vcun-y6d5-6uby" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18" } ], "aliases": [ "CVE-2024-7409" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-91y7-ceje-jbd3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81125?format=api", "vulnerability_id": "VCID-93gr-c812-uud8", "summary": "QEMU: sdhci: out-of-bounds access issue while doing multi block SDMA", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25085.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25085.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25085", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.3636", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36534", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36567", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36405", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36457", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36477", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36484", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36449", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36427", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36468", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36451", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36395", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36169", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36139", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00156", "scoring_system": "epss", "scoring_elements": "0.36052", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25085" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25085", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25085" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879671", "reference_id": "1879671", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879671" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970540", "reference_id": "970540", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970540" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-25085" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-93gr-c812-uud8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80846?format=api", "vulnerability_id": "VCID-955d-q41q-4uau", "summary": "QEMU: net: an assert failure via eth_get_gso_type", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27617.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27617.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27617", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45648", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45715", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45735", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45684", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45739", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45758", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45728", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45736", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45786", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.4578", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45727", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45658", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45667", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45607", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27617" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891668", "reference_id": "1891668", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1891668" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973324", "reference_id": "973324", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=973324" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3061", "reference_id": "RHSA-2021:3061", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3061" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-27617" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-955d-q41q-4uau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82949?format=api", "vulnerability_id": "VCID-9rpr-g2sm-yqb6", "summary": "QEMU: pvrdma: null dereference or excessive memory allocation when creating QP/CQ", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20125.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20125.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20125", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65869", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.66011", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.66001", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.66013", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.6591", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.6594", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65906", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65958", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.6597", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65988", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65974", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65945", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.6598", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65993", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.005", "scoring_system": "epss", "scoring_elements": "0.65981", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20125" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20125", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20125" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02823.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02823.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/12/19/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/12/19/3" }, { "reference_url": "http://www.securityfocus.com/bid/106298", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106298" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660747", "reference_id": "1660747", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660747" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20125", "reference_id": "CVE-2018-20125", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20125" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2018-20125" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9rpr-g2sm-yqb6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35394?format=api", "vulnerability_id": "VCID-ap2r-g7ew-kqed", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3544.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3544.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09299", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.093", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09351", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09263", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09339", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09388", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09399", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.0937", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09355", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09248", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09247", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.0945", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09408", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09368", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958935", "reference_id": "1958935", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958935" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989042", "reference_id": "989042", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989042" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3544" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ap2r-g7ew-kqed" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35392?format=api", "vulnerability_id": "VCID-bcps-uatt-wkd7", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3527.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3527.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3527", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07873", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.0797", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08017", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07976", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08035", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08054", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08038", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08019", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08002", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07915", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07897", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08058", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08013", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07979", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07954", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3527" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3527", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3527" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1955695", "reference_id": "1955695", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1955695" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988157", "reference_id": "988157", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=988157" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3527" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bcps-uatt-wkd7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82947?format=api", "vulnerability_id": "VCID-be1r-pq33-abg5", "summary": "QEMU: pvrdma: uar_read leads to NULL dereference", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20191.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20191.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20191", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.7251", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72649", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72643", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72652", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72516", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72533", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72548", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72561", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72585", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72567", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72557", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.726", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.7261", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00725", "scoring_system": "epss", "scoring_elements": "0.72601", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20191" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20191", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20191" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg03066.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg03066.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/12/18/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/12/18/1" }, { "reference_url": "http://www.securityfocus.com/bid/106276", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106276" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660314", "reference_id": "1660314", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660314" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20191", "reference_id": "CVE-2018-20191", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20191" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2018-20191" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-be1r-pq33-abg5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35405?format=api", "vulnerability_id": "VCID-br4x-bpvj-puhr", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3608.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3608.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3608", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11095", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11238", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11302", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11117", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11197", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11253", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11263", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11174", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11149", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11015", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11025", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11155", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11094", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.1105", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10986", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3608" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3608", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3608" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1973383", "reference_id": "1973383", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1973383" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990563", "reference_id": "990563", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990563" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3608" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-br4x-bpvj-puhr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82097?format=api", "vulnerability_id": "VCID-burb-pa38-fqhw", "summary": "QEMU: vnc: memory leakage upon disconnect", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20382.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20382.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13515", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13615", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13676", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13474", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13555", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13605", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13578", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.1354", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13492", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13404", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.134", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13473", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13478", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13449", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13343", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1810390", "reference_id": "1810390", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1810390" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2774", "reference_id": "RHSA-2020:2774", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2774" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3267", "reference_id": "RHSA-2020:3267", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3267" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3906", "reference_id": "RHSA-2020:3906", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3906" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3907", "reference_id": "RHSA-2020:3907", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3907" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4167", "reference_id": "RHSA-2020:4167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4167" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-20382" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-burb-pa38-fqhw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80862?format=api", "vulnerability_id": "VCID-c4ky-b4y8-kqd5", "summary": "QEMU: divide by zero in dwc2_handle_packet() in hw/usb/hcd-dwc2.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27661.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27661.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27661", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32437", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32582", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32618", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32441", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32489", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32517", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.3252", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32482", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32455", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32491", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32469", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.3227", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32154", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.3207", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27661" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27661", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27661" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890653", "reference_id": "1890653", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1890653" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972864", "reference_id": "972864", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=972864" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-27661" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c4ky-b4y8-kqd5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78760?format=api", "vulnerability_id": "VCID-cgq2-b6my-eucg", "summary": "QEMU: lsi53c895a: DMA reentrancy issue leads to stack overflow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0330.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0330.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0330", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08241", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08236", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08291", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08305", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08323", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08314", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08293", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08278", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.08981", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.0896", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09113", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09155", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09099", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.09069", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0330" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029155", "reference_id": "1029155", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1029155" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2160151", "reference_id": "2160151", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T18:43:40Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2160151" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-0330", "reference_id": "CVE-2023-0330", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T18:43:40Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-0330" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00006.html", "reference_id": "msg00006.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T18:43:40Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00006.html" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2023-01/msg03411.html", "reference_id": "msg03411.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-01T18:43:40Z/" } ], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2023-01/msg03411.html" }, { "reference_url": "https://usn.ubuntu.com/6167-1/", "reference_id": "USN-6167-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6167-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2023-0330" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cgq2-b6my-eucg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/76982?format=api", "vulnerability_id": "VCID-cnyg-wvxr-gqg3", "summary": "QEMU: sdhci: heap buffer overflow in sdhci_write_dataport()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-3447.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-3447.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-3447", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03205", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03067", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03055", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03032", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03041", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03161", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03163", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03156", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03085", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03098", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03099", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03104", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03129", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03091", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-3447" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3447", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3447" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068821", "reference_id": "1068821", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1068821" }, { "reference_url": "https://patchew.org/QEMU/20240404085549.16987-1-philmd@linaro.org/", "reference_id": "20240404085549.16987-1-philmd@linaro.org", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T18:53:42Z/" } ], "url": "https://patchew.org/QEMU/20240404085549.16987-1-philmd@linaro.org/" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274123", "reference_id": "2274123", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T18:53:42Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274123" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-3447", "reference_id": "CVE-2024-3447", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-14T18:53:42Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-3447" }, { "reference_url": "https://usn.ubuntu.com/7744-1/", "reference_id": "USN-7744-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7744-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994614?format=api", "purl": "pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-hkf8-96k7-kuc9" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-vcun-y6d5-6uby" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18" } ], "aliases": [ "CVE-2024-3447" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cnyg-wvxr-gqg3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79249?format=api", "vulnerability_id": "VCID-d6gd-j7ks-xkgk", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15890.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15890.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15890", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.6869", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68849", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68787", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68836", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68842", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68709", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68727", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68705", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68757", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68776", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68799", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68785", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68756", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68798", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68808", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15890" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.freedesktop.org/slirp/libslirp/commit/c5927943", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.freedesktop.org/slirp/libslirp/commit/c5927943" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html" }, { "reference_url": "https://seclists.org/bugtraq/2020/Feb/0", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Feb/0" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4616" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/09/06/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/09/06/3" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749716", "reference_id": "1749716", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749716" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939868", "reference_id": "939868", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939868" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939869", "reference_id": "939869", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939869" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libslirp_project:libslirp:4.0.0:-:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libslirp_project:libslirp:4.0.0:-:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libslirp_project:libslirp:4.0.0:-:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:4.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15890", "reference_id": "CVE-2019-15890", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15890" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0348", "reference_id": "RHSA-2020:0348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0775", "reference_id": "RHSA-2020:0775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4676", "reference_id": "RHSA-2020:4676", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4676" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-15890" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d6gd-j7ks-xkgk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61637?format=api", "vulnerability_id": "VCID-dqbd-gqg9-2kgs", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13754.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13754.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08657", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08685", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08733", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08656", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08757", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08735", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.0872", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.0861", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08597", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08751", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08762", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08716", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08721", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842363", "reference_id": "1842363", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842363" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2521", "reference_id": "RHSA-2021:2521", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2521" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3061", "reference_id": "RHSA-2021:3061", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3061" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13754" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dqbd-gqg9-2kgs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80609?format=api", "vulnerability_id": "VCID-drqf-646q-xqf3", "summary": "qemu: out-of-bound heap buffer access via an interrupt ID field", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20221.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20221.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20221", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0619", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06225", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06251", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06231", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06275", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06317", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06309", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06305", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06294", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06264", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06408", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06423", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06446", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06458", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20221" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20221", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20221" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924601", "reference_id": "1924601", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924601" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1125", "reference_id": "RHSA-2021:1125", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1125" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2521", "reference_id": "RHSA-2021:2521", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2521" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3061", "reference_id": "RHSA-2021:3061", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3061" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-20221" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-drqf-646q-xqf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31746?format=api", "vulnerability_id": "VCID-e99n-gc79-cqcy", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11102.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11102.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11102", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60624", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60774", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60781", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60769", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60783", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60699", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60728", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60694", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60742", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60758", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60782", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60768", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60749", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60791", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00401", "scoring_system": "epss", "scoring_elements": "0.60797", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11102" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11102" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2020-03/msg08322.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2020-03/msg08322.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2020/04/06/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2020/04/06/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1821180", "reference_id": "1821180", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1821180" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=956145", "reference_id": "956145", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=956145" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.2.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:4.2.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.2.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11102", "reference_id": "CVE-2020-11102", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-11102" }, { "reference_url": "https://security.gentoo.org/glsa/202005-02", "reference_id": "GLSA-202005-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-02" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-11102" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "6.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-e99n-gc79-cqcy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35407?format=api", "vulnerability_id": "VCID-eb18-wa2w-q7bn", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3682.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3682.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61708", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61782", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61813", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61831", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61847", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61868", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61857", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61837", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.6188", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61885", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61869", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61864", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61882", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00418", "scoring_system": "epss", "scoring_elements": "0.61875", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1989651", "reference_id": "1989651", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1989651" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991911", "reference_id": "991911", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=991911" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3703", "reference_id": "RHSA-2021:3703", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3703" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3704", "reference_id": "RHSA-2021:3704", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3704" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" }, { "reference_url": "https://usn.ubuntu.com/5772-1/", "reference_id": "USN-5772-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5772-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3682" ], "risk_score": 3.9, "exploitability": "0.5", "weighted_severity": "7.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eb18-wa2w-q7bn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35402?format=api", "vulnerability_id": "VCID-een8-8kc5-qfcx", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3546.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3546.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13329", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13431", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13496", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.1329", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13373", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13423", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13395", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.1336", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13313", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13218", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13217", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13297", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13304", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13276", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00043", "scoring_system": "epss", "scoring_elements": "0.13173", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958978", "reference_id": "1958978", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958978" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989042", "reference_id": "989042", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989042" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3546" ], "risk_score": 3.7, "exploitability": "0.5", "weighted_severity": "7.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-een8-8kc5-qfcx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81469?format=api", "vulnerability_id": "VCID-egyg-bbm9-8qea", "summary": "QEMU: slirp: use-after-free in ip_reass() function in ip_input.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1983.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1983.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.34973", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35317", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35083", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35062", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42299", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42307", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42315", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42338", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42301", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42273", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42323", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43138", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43052", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43077", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43111", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1983" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1829825", "reference_id": "1829825", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1829825" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3053", "reference_id": "RHSA-2020:3053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3053" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4079", "reference_id": "RHSA-2020:4079", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4079" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4290", "reference_id": "RHSA-2020:4290", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4290" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4676", "reference_id": "RHSA-2020:4676", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4676" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0346", "reference_id": "RHSA-2021:0346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0459", "reference_id": "RHSA-2021:0459", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0459" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0934", "reference_id": "RHSA-2021:0934", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0934" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-1983" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-egyg-bbm9-8qea" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80657?format=api", "vulnerability_id": "VCID-eqp6-raqc-dkch", "summary": "qemu: 9pfs: TOCTOU privilege escalation vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20181.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20181.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20181", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.1716", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17325", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17373", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17152", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17244", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17301", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17315", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17266", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17207", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17146", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17151", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17187", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17091", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17074", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17018", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20181" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927007", "reference_id": "1927007", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927007" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-20181" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-eqp6-raqc-dkch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34657?format=api", "vulnerability_id": "VCID-ewsp-7ydm-5ub3", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13164.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13164.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.0563", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05392", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.0556", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05592", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05538", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05575", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05598", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05571", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05559", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05552", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05501", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05468", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05537", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05503", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1722559", "reference_id": "1722559", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1722559" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931351", "reference_id": "931351", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931351" }, { "reference_url": "https://security.gentoo.org/glsa/202003-66", "reference_id": "GLSA-202003-66", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-66" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-13164" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ewsp-7ydm-5ub3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61639?format=api", "vulnerability_id": "VCID-ezm8-pq4d-mkhg", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13800.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13800.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13800", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28466", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28561", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28604", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28407", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28474", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28515", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28517", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28425", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28442", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28419", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28368", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28243", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28131", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28051", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13800" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13800", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13800" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843771", "reference_id": "1843771", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843771" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13800" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ezm8-pq4d-mkhg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62353?format=api", "vulnerability_id": "VCID-f2fx-sqtp-8yhe", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could lead to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0216.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0216.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0216", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06028", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06061", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0609", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06073", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06114", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06152", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06144", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.0614", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06132", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06093", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06104", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06254", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06273", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.063", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00023", "scoring_system": "epss", "scoring_elements": "0.06311", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0216" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0216", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0216" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014590", "reference_id": "1014590", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014590" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036953", "reference_id": "2036953", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036953" }, { "reference_url": "https://security.gentoo.org/glsa/202408-18", "reference_id": "GLSA-202408-18", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-18" }, { "reference_url": "https://usn.ubuntu.com/5772-1/", "reference_id": "USN-5772-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5772-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2022-0216" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f2fx-sqtp-8yhe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78365?format=api", "vulnerability_id": "VCID-f4sq-73vu-sfdq", "summary": "QEMU: e1000e: heap use-after-free in e1000e_write_packet_to_guest()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3019.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3019.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3019", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.0165", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01537", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01625", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01632", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01631", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.0154", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01544", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01548", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01554", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01543", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01534", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.0152", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00012", "scoring_system": "epss", "scoring_elements": "0.01536", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3019" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3019", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3019" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1041102", "reference_id": "1041102", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1041102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222351", "reference_id": "2222351", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:26:38Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222351" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::crb", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::crb", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-3019", "reference_id": "CVE-2023-3019", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:26:38Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-3019" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0135", "reference_id": "RHSA-2024:0135", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:26:38Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0135" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0404", "reference_id": "RHSA-2024:0404", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:26:38Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0404" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0569", "reference_id": "RHSA-2024:0569", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:26:38Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0569" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2135", "reference_id": "RHSA-2024:2135", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-03T15:26:38Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2135" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994614?format=api", "purl": "pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-hkf8-96k7-kuc9" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-vcun-y6d5-6uby" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18" } ], "aliases": [ "CVE-2023-3019" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f4sq-73vu-sfdq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/40981?format=api", "vulnerability_id": "VCID-ffd9-9wm1-rffs", "summary": "Multiple vulnerabilities have been found in libslirp, the worst of\n which could result in a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3594.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3594.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3594", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07906", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07864", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.0785", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.0801", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07972", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07937", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07969", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07991", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07978", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.0796", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07945", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08161", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08215", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08071", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3594" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970491", "reference_id": "1970491", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1970491" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989995", "reference_id": "989995", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989995" }, { "reference_url": "https://security.archlinux.org/ASA-202106-49", "reference_id": "ASA-202106-49", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202106-49" }, { "reference_url": "https://security.archlinux.org/AVG-2073", "reference_id": "AVG-2073", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2073" }, { "reference_url": "https://security.gentoo.org/glsa/202107-44", "reference_id": "GLSA-202107-44", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202107-44" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4191", "reference_id": "RHSA-2021:4191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4191" }, { "reference_url": "https://usn.ubuntu.com/5009-1/", "reference_id": "USN-5009-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-1/" }, { "reference_url": "https://usn.ubuntu.com/5009-2/", "reference_id": "USN-5009-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-2/" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3594" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ffd9-9wm1-rffs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82951?format=api", "vulnerability_id": "VCID-fucx-q3j9-qkat", "summary": "QEMU: pvrdma: infinite loop in pvrdma_qp_send/recv", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20216.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20216.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20216", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65794", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65936", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65927", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65938", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65844", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65874", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65839", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65891", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65903", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65921", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65908", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65878", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65913", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65928", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00498", "scoring_system": "epss", "scoring_elements": "0.65917", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20216" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20216", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20216" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg03052.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg03052.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/12/19/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/12/19/2" }, { "reference_url": "http://www.securityfocus.com/bid/106291", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106291" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660753", "reference_id": "1660753", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660753" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20216", "reference_id": "CVE-2018-20216", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20216" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2018-20216" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fucx-q3j9-qkat" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34658?format=api", "vulnerability_id": "VCID-gqtx-g1cs-6ybn", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8608.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8608.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-8608", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81079", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81088", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81113", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.8114", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81146", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81165", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81151", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81144", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81181", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81183", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81203", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81211", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81216", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-8608" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8608", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8608" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798453", "reference_id": "1798453", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798453" }, { "reference_url": "https://security.gentoo.org/glsa/202003-66", "reference_id": "GLSA-202003-66", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-66" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1208", "reference_id": "RHSA-2020:1208", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1208" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1209", "reference_id": "RHSA-2020:1209", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1209" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1261", "reference_id": "RHSA-2020:1261", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1292", "reference_id": "RHSA-2020:1292", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1292" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1300", "reference_id": "RHSA-2020:1300", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1300" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1351", "reference_id": "RHSA-2020:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1352", "reference_id": "RHSA-2020:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1379", "reference_id": "RHSA-2020:1379", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1379" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1403", "reference_id": "RHSA-2020:1403", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1403" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2342", "reference_id": "RHSA-2020:2342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2730", "reference_id": "RHSA-2020:2730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2730" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2773", "reference_id": "RHSA-2020:2773", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2773" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2774", "reference_id": "RHSA-2020:2774", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2774" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2844", "reference_id": "RHSA-2020:2844", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2844" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3040", "reference_id": "RHSA-2020:3040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3040" }, { "reference_url": "https://usn.ubuntu.com/4283-1/", "reference_id": "USN-4283-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4283-1/" }, { "reference_url": "https://usn.ubuntu.com/4632-1/", "reference_id": "USN-4632-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4632-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-8608" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gqtx-g1cs-6ybn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/94148?format=api", "vulnerability_id": "VCID-h22r-c3az-3fa3", "summary": "An issue was discovered in ide_dma_cb() in hw/ide/core.c in QEMU 2.4.0 through 4.2.0. The guest system can crash the QEMU process in the host system via a special SCSI_IOCTL_SEND_COMMAND. It hits an assertion that implies that the size of successful DMA transfers there must be a multiple of 512 (the size of a sector). NOTE: a member of the QEMU security team disputes the significance of this issue because a \"privileged guest user has many ways to cause similar DoS effect, without triggering this assert.", "references": [ { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20175", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67585", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67488", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67576", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67555", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67574", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67584", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67452", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67509", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67487", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67538", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67553", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67575", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67562", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67529", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00537", "scoring_system": "epss", "scoring_elements": "0.67564", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20175" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20175", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20175" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-11/msg00597.html", "reference_id": "msg00597.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:35:51Z/" } ], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-11/msg00597.html" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg01651.html", "reference_id": "msg01651.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:35:51Z/" } ], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg01651.html" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-11/msg02165.html", "reference_id": "msg02165.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:35:51Z/" } ], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-11/msg02165.html" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg03869.html", "reference_id": "msg03869.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:35:51Z/" } ], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2019-07/msg03869.html" }, { "reference_url": "https://www.mail-archive.com/qemu-devel%40nongnu.org/msg667396.html", "reference_id": "msg667396.html", "reference_type": "", "scores": [ { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-26T19:35:51Z/" } ], "url": "https://www.mail-archive.com/qemu-devel%40nongnu.org/msg667396.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-20175" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h22r-c3az-3fa3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81332?format=api", "vulnerability_id": "VCID-h5sc-3zrc-23dn", "summary": "QEMU: loader: OOB access while loading registered ROM may lead to code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13765.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13765.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58804", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58879", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58901", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58868", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.5892", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58926", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58943", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58907", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58941", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58945", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58923", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58906", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58922", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58908", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13765" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842912", "reference_id": "1842912", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842912" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0347", "reference_id": "RHSA-2021:0347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0347" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13765" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h5sc-3zrc-23dn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80849?format=api", "vulnerability_id": "VCID-hq1b-c1ew-kkga", "summary": "QEMU: ati-vga: potential crash via invalid x y parameter values", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27616.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27616.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27616", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63006", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63065", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63094", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63059", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63111", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63128", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63145", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.6313", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63108", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63143", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63151", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63131", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63153", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63167", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00438", "scoring_system": "epss", "scoring_elements": "0.63165", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27616" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27616" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1894036", "reference_id": "1894036", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1894036" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=975265", "reference_id": "975265", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=975265" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-27616" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hq1b-c1ew-kkga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35404?format=api", "vulnerability_id": "VCID-hrhp-htnd-7bbx", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3607.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3607.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3607", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38532", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38667", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38691", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38622", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38673", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38682", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38692", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38654", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38628", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38675", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38653", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38575", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38416", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38391", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38299", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3607" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3607", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3607" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1973349", "reference_id": "1973349", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1973349" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990564", "reference_id": "990564", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990564" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3607" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hrhp-htnd-7bbx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82802?format=api", "vulnerability_id": "VCID-j11x-bba3-zkdj", "summary": "QEMU: ppc64: sPAPR emulator leaks the host hardware identity", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00094.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00094.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00040.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00040.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8934.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8934.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-8934", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28149", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.27749", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.2802", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.27938", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.27826", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.2822", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28264", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28055", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28121", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28165", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28172", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28129", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28072", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28082", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00102", "scoring_system": "epss", "scoring_elements": "0.28065", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-8934" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8934", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8934" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-02/msg04821.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-02/msg04821.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20190411-0006/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security.netapp.com/advisory/ntap-20190411-0006/" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/02/21/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/02/21/1" }, { "reference_url": "http://www.securityfocus.com/bid/107115", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/107115" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668022", "reference_id": "1668022", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668022" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922923", "reference_id": "922923", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922923" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8934", "reference_id": "CVE-2019-8934", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:N/A:N" }, { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8934" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-8934" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j11x-bba3-zkdj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35423?format=api", "vulnerability_id": "VCID-j1gy-ttz5-1yct", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-26353.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-26353.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26353", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47052", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47071", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47019", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47074", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.4707", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47095", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47068", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47076", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47132", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47128", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47062", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47072", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0024", "scoring_system": "epss", "scoring_elements": "0.47021", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2063197", "reference_id": "2063197", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2063197" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5002", "reference_id": "RHSA-2022:5002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5263", "reference_id": "RHSA-2022:5263", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5263" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5821", "reference_id": "RHSA-2022:5821", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5821" }, { "reference_url": "https://usn.ubuntu.com/5489-1/", "reference_id": "USN-5489-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5489-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2022-26353" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j1gy-ttz5-1yct" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35419?format=api", "vulnerability_id": "VCID-j6hs-wm45-s3ej", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20257.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20257.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20257", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22726", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.229", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22944", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22737", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22812", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22864", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22885", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22848", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22792", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22806", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.228", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2276", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22598", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2259", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22585", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20257" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20257", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20257" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1930087", "reference_id": "1930087", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1930087" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984450", "reference_id": "984450", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984450" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5238", "reference_id": "RHSA-2021:5238", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5238" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0081", "reference_id": "RHSA-2022:0081", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0081" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-20257" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j6hs-wm45-s3ej" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80185?format=api", "vulnerability_id": "VCID-jmca-kswb-1beq", "summary": "QEMU: ati-vga: inconsistent check in ati_2d_blt() may lead to out-of-bounds write", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3638.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3638.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05164", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05208", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05237", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05261", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05297", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05317", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05282", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05268", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05254", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05199", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05201", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05334", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05369", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05411", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05409", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1979858", "reference_id": "1979858", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1979858" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=992726", "reference_id": "992726", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=992726" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3638" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jmca-kswb-1beq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80797?format=api", "vulnerability_id": "VCID-juek-f6et-x7eb", "summary": "QEMU: e1000e: infinite loop scenario in case of null packet descriptor", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28916.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-28916.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-28916", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14431", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14494", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14564", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14372", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14457", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14511", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.1446", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14423", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14366", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14257", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14258", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14328", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14359", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14334", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14275", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-28916" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28916", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28916" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1903064", "reference_id": "1903064", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1903064" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=974687", "reference_id": "974687", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=974687" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976388", "reference_id": "976388", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-28916" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-juek-f6et-x7eb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82280?format=api", "vulnerability_id": "VCID-ke54-4uc4-rkbs", "summary": "qemu: hw/display/bochs-display.c does not ensure a sufficient PCI config space allocation leading to a buffer overflow involving the PCIe extended config space", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15034.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15034.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40955", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40764", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40956", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40861", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40848", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41036", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41068", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40994", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41043", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.4105", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41069", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41033", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41017", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.4106", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41031", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01959.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01959.html" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4665" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1812659", "reference_id": "1812659", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1812659" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:4.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15034", "reference_id": "CVE-2019-15034", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "5.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15034" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-15034" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ke54-4uc4-rkbs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/77875?format=api", "vulnerability_id": "VCID-kx81-eex4-hug8", "summary": "QEMU: virtio-net: stack buffer overflow in virtio_net_flush_tx()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6693.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6693.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6693", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06948", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06823", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06987", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06974", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06978", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06866", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06853", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06907", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06938", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06935", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06928", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06923", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06863", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06845", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6693" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6693", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6693" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254580", "reference_id": "2254580", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-21T14:46:00Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2254580" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-6693", "reference_id": "CVE-2023-6693", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-21T14:46:00Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-6693" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2962", "reference_id": "RHSA-2024:2962", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-21T14:46:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2962" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:4492", "reference_id": "RHSA-2025:4492", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-05-21T14:46:00Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:4492" }, { "reference_url": "https://usn.ubuntu.com/6954-1/", "reference_id": "USN-6954-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6954-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994614?format=api", "purl": "pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-hkf8-96k7-kuc9" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-vcun-y6d5-6uby" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18" } ], "aliases": [ "CVE-2023-6693" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kx81-eex4-hug8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80745?format=api", "vulnerability_id": "VCID-mn7m-an9j-yucj", "summary": "QEMU: heap buffer overflow in msix_table_mmio_write() in hw/pci/msix.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27821.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27821.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27821", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10652", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10792", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10855", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10682", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10759", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10815", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10827", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10797", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10772", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10634", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10649", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10774", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10728", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10707", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-27821" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27821", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27821" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902651", "reference_id": "1902651", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902651" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977616", "reference_id": "977616", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=977616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-27821" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mn7m-an9j-yucj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35403?format=api", "vulnerability_id": "VCID-nb4k-f7rm-kuhg", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3582.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3582.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3582", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37003", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37176", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37204", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37035", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37086", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37099", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37109", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37075", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37049", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37095", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.37077", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.3702", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.36789", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.36757", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00162", "scoring_system": "epss", "scoring_elements": "0.3667", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3582" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3582", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3582" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1966266", "reference_id": "1966266", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1966266" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990565", "reference_id": "990565", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990565" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3582" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nb4k-f7rm-kuhg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80430?format=api", "vulnerability_id": "VCID-ne4d-zj65-qkgx", "summary": "QEMU: fdc: heap buffer overflow in DMA read data transfers", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3507.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3507.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3507", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08241", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08296", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08349", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08293", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08356", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08373", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08365", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08345", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08328", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08225", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08212", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08343", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08306", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08272", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3507" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3507", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3507" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951118", "reference_id": "1951118", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1951118" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987410", "reference_id": "987410", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=987410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7472", "reference_id": "RHSA-2022:7472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7967", "reference_id": "RHSA-2022:7967", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7967" }, { "reference_url": "https://usn.ubuntu.com/5489-1/", "reference_id": "USN-5489-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5489-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3507" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ne4d-zj65-qkgx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80905?format=api", "vulnerability_id": "VCID-nuwe-tupt-wfhg", "summary": "QEMU: usb: hcd-ohci: infinite loop issue while processing transfer descriptors", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25625.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25625.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25625", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08833", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08724", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08699", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.0885", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08868", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08821", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35125", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.3513", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35095", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35071", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.34948", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35098", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35147", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35176", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35054", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25625" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25625", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25625" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879808", "reference_id": "1879808", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879808" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970542", "reference_id": "970542", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970542" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-25625" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nuwe-tupt-wfhg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81124?format=api", "vulnerability_id": "VCID-p2we-9qfu-17eb", "summary": "QEMU: usb: use-after-free issue while setting up packet", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25084.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25084.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25084", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10292", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10273", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10244", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10378", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10359", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10351", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11097", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.111", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11068", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11045", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10944", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11043", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11082", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11145", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10966", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25084" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25084", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25084" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879652", "reference_id": "1879652", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879652" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970539", "reference_id": "970539", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970539" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-25084" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p2we-9qfu-17eb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31747?format=api", "vulnerability_id": "VCID-phfy-zv23-sqcr", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1711.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1711.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1711", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68175", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68197", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68215", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68192", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68243", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68258", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68283", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.6827", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68236", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68276", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68287", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68267", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68311", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68319", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00559", "scoring_system": "epss", "scoring_elements": "0.68322", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1711" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1794290", "reference_id": "1794290", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1794290" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949731", "reference_id": "949731", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949731" }, { "reference_url": "https://security.gentoo.org/glsa/202005-02", "reference_id": "GLSA-202005-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0669", "reference_id": "RHSA-2020:0669", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0669" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0730", "reference_id": "RHSA-2020:0730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0730" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0731", "reference_id": "RHSA-2020:0731", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0731" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0773", "reference_id": "RHSA-2020:0773", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0773" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1150", "reference_id": "RHSA-2020:1150", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1150" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1216", "reference_id": "RHSA-2020:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1296", "reference_id": "RHSA-2020:1296", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1296" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1300", "reference_id": "RHSA-2020:1300", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1300" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1352", "reference_id": "RHSA-2020:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1358", "reference_id": "RHSA-2020:1358", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1358" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1505", "reference_id": "RHSA-2020:1505", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1505" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2472", "reference_id": "RHSA-2020:2472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2472" }, { "reference_url": "https://usn.ubuntu.com/4283-1/", "reference_id": "USN-4283-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4283-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-1711" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-phfy-zv23-sqcr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35397?format=api", "vulnerability_id": "VCID-q38v-9gvs-sydf", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3545.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3545.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30389", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30418", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30464", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30272", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30331", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30366", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30368", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30324", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30277", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30291", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30273", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30229", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30164", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.30049", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00116", "scoring_system": "epss", "scoring_elements": "0.29974", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958955", "reference_id": "1958955", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1958955" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989042", "reference_id": "989042", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989042" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3545" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q38v-9gvs-sydf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82943?format=api", "vulnerability_id": "VCID-qejd-5dkk-muhc", "summary": "QEMU: pvrdma: memory leakage in device hotplug", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20123.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20123.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20123", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36064", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36259", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36293", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36128", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36177", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36195", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36201", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36164", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36138", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.3618", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36165", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.36114", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.35884", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.35852", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.35765", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20123" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20123", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20123" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1658963", "reference_id": "1658963", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1658963" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916442", "reference_id": "916442", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916442" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2018-20123" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qejd-5dkk-muhc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35412?format=api", "vulnerability_id": "VCID-qn73-3gkb-rkbm", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3930.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3930.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3930", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17001", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17172", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17224", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16955", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17044", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17103", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17078", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17032", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16971", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16908", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.1691", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16947", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16851", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16833", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16789", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3930" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3930", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3930" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2020588", "reference_id": "2020588", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2020588" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5065", "reference_id": "RHSA-2021:5065", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5065" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5238", "reference_id": "RHSA-2021:5238", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5238" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0081", "reference_id": "RHSA-2022:0081", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0081" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" }, { "reference_url": "https://usn.ubuntu.com/5772-1/", "reference_id": "USN-5772-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5772-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3930" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qn73-3gkb-rkbm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78075?format=api", "vulnerability_id": "VCID-qs61-1esc-c3cz", "summary": "QEMU: improper IDE controller reset can lead to MBR overwrite", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5088.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5088.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5088", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02176", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02137", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0209", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02103", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0219", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0216", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0215", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02143", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02139", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02157", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02134", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02119", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02115", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5088" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5088", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5088" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2247283", "reference_id": "2247283", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-12T14:28:52Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2247283" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-5088", "reference_id": "CVE-2023-5088", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-12T14:28:52Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-5088" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2135", "reference_id": "RHSA-2024:2135", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-12T14:28:52Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2135" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2962", "reference_id": "RHSA-2024:2962", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-12T14:28:52Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2962" }, { "reference_url": "https://lore.kernel.org/all/20230921160712.99521-1-simon.rowe@nutanix.com/T/", "reference_id": "T", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-06-12T14:28:52Z/" } ], "url": "https://lore.kernel.org/all/20230921160712.99521-1-simon.rowe@nutanix.com/T/" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994614?format=api", "purl": "pkg:deb/debian/qemu@1:7.2%2Bdfsg-7%2Bdeb12u18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-hkf8-96k7-kuc9" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-vcun-y6d5-6uby" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:7.2%252Bdfsg-7%252Bdeb12u18" } ], "aliases": [ "CVE-2023-5088" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qs61-1esc-c3cz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35409?format=api", "vulnerability_id": "VCID-r47h-wdgy-7bga", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3748.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3748.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10319", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10438", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10505", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10365", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10503", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10533", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.105", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10478", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10345", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10449", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10432", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00035", "scoring_system": "epss", "scoring_elements": "0.10421", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3748" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1998514", "reference_id": "1998514", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1998514" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=993401", "reference_id": "993401", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=993401" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4112", "reference_id": "RHSA-2021:4112", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4112" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:5036", "reference_id": "RHSA-2021:5036", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:5036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1759", "reference_id": "RHSA-2022:1759", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1759" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3748" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r47h-wdgy-7bga" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80608?format=api", "vulnerability_id": "VCID-r51r-u7mq-93cy", "summary": "QEMU: scsi: mptsas: use-after-free while processing io requests", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3392.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3392.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3392", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07325", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07437", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07479", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07461", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07519", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07541", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07543", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07529", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07516", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07438", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07428", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07557", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07517", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07507", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07476", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3392" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3392", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3392" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924042", "reference_id": "1924042", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1924042" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984449", "reference_id": "984449", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984449" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3392" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r51r-u7mq-93cy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80970?format=api", "vulnerability_id": "VCID-re83-uvh8-5bgq", "summary": "QEMU: out-of-bounds read/write in ati-vga device emulation in ati_2d_blt()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24352.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-24352.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-24352", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33459", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33616", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33649", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33488", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33533", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33566", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.3356", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33518", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00137", "scoring_system": "epss", "scoring_elements": "0.33495", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35132", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35195", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.35181", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.3479", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.34898", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.34879", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-24352" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24352", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-24352" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1847584", "reference_id": "1847584", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1847584" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968820", "reference_id": "968820", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968820" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-24352" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-re83-uvh8-5bgq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/76578?format=api", "vulnerability_id": "VCID-ruzy-eqc8-5ubs", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14378.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14378.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.9111", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91116", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91124", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91131", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91144", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.9115", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91158", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91159", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91183", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91184", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91187", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91199", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91198", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91195", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14378" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745", "reference_id": "1734745", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933741", "reference_id": "933741", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933741" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933742", "reference_id": "933742", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933742" }, { "reference_url": "https://github.com/vishnudevtj/exploits/blob/bdbe2647969150c63ee3b34da5a2deb056e64f0b/qemu/CVE-2019-14378/exp.c", "reference_id": "CVE-2019-14378", "reference_type": "exploit", "scores": [], "url": "https://github.com/vishnudevtj/exploits/blob/bdbe2647969150c63ee3b34da5a2deb056e64f0b/qemu/CVE-2019-14378/exp.c" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/47320.c", "reference_id": "CVE-2019-14378", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/47320.c" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3179", "reference_id": "RHSA-2019:3179", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3403", "reference_id": "RHSA-2019:3403", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3403" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3494", "reference_id": "RHSA-2019:3494", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3494" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3742", "reference_id": "RHSA-2019:3742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3787", "reference_id": "RHSA-2019:3787", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3787" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3968", "reference_id": "RHSA-2019:3968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:4344", "reference_id": "RHSA-2019:4344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:4344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0366", "reference_id": "RHSA-2020:0366", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0366" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0775", "reference_id": "RHSA-2020:0775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1216", "reference_id": "RHSA-2020:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2065", "reference_id": "RHSA-2020:2065", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2065" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2126", "reference_id": "RHSA-2020:2126", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2126" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2342", "reference_id": "RHSA-2020:2342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2342" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-14378" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ruzy-eqc8-5ubs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81468?format=api", "vulnerability_id": "VCID-rvs5-s55e-9ueb", "summary": "qemu: weak signature generation in Pointer Authentication support for ARM", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10702.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10702.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10702", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10467", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10609", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10673", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10536", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10608", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10667", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10681", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1065", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10625", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10489", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10508", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10633", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10582", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1058", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10528", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10702" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10702", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10702" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1809948", "reference_id": "1809948", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1809948" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-10702" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rvs5-s55e-9ueb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62352?format=api", "vulnerability_id": "VCID-rz5x-q1ne-53he", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could lead to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14394.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14394.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14394", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06818", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06901", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06951", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06935", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06989", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0702", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07025", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07014", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07007", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06946", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0693", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07064", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07048", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07052", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.07013", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14394" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14394", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14394" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1908004", "reference_id": "1908004", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1908004" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=979677", "reference_id": "979677", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=979677" }, { "reference_url": "https://security.gentoo.org/glsa/202408-18", "reference_id": "GLSA-202408-18", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-18" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-14394" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rz5x-q1ne-53he" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61638?format=api", "vulnerability_id": "VCID-sy57-hngf-d3gn", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13791.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13791.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13791", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.3855", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.3868", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38702", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38632", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38683", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38692", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38664", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38638", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38686", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38586", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38433", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38408", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00173", "scoring_system": "epss", "scoring_elements": "0.38316", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13791" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13791", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13791" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843764", "reference_id": "1843764", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843764" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13791" ], "risk_score": 1.5, "exploitability": "0.5", "weighted_severity": "3.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sy57-hngf-d3gn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80755?format=api", "vulnerability_id": "VCID-t2y3-nbz8-jqa7", "summary": "QEMU: slirp: out-of-bounds access while processing ARP/NCSI packets", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29129.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29129.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29129", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.50965", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.50997", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.5103", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51037", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51018", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51043", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51057", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51054", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51097", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51075", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51058", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51103", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00276", "scoring_system": "epss", "scoring_elements": "0.51081", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29129" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29129", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29129" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902231", "reference_id": "1902231", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1902231" }, { "reference_url": "https://security.archlinux.org/ASA-202012-7", "reference_id": "ASA-202012-7", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202012-7" }, { "reference_url": "https://security.archlinux.org/AVG-1305", "reference_id": "AVG-1305", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/5009-1/", "reference_id": "USN-5009-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5009-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-29129" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t2y3-nbz8-jqa7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35375?format=api", "vulnerability_id": "VCID-t44w-g1ys-47e6", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15859.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15859.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15859", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09552", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09537", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30453", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30818", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30654", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30538", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32434", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32465", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32427", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.324", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32436", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32414", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32461", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32562", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0013", "scoring_system": "epss", "scoring_elements": "0.32385", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15859" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15859", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15859" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1859168", "reference_id": "1859168", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1859168" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=965978", "reference_id": "965978", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=965978" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:4191", "reference_id": "RHSA-2021:4191", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:4191" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-15859" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t44w-g1ys-47e6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78215?format=api", "vulnerability_id": "VCID-t6cq-kfkw-wbch", "summary": "QEMU: virtio-crypto: heap buffer overflow in virtio_crypto_sym_op_helper()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3180.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-3180.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3180", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02408", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02307", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02334", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02318", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02304", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02301", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02285", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02292", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02387", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02366", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02358", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.02313", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00013", "scoring_system": "epss", "scoring_elements": "0.0231", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-3180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3180" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222424", "reference_id": "2222424", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:56:22Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222424" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8", "reference_id": "cpe:/a:redhat:advanced_virtualization:8::el8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:advanced_virtualization:8::el8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-3180", "reference_id": "CVE-2023-3180", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:56:22Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-3180" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00006.html", "reference_id": "msg00006.html", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:56:22Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00006.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MURWGXDIF2WTDXV36T6HFJDBL632AO7R/", "reference_id": "MURWGXDIF2WTDXV36T6HFJDBL632AO7R", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:56:22Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MURWGXDIF2WTDXV36T6HFJDBL632AO7R/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230831-0008/", "reference_id": "ntap-20230831-0008", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-25T19:56:22Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230831-0008/" }, { "reference_url": "https://usn.ubuntu.com/6567-1/", "reference_id": "USN-6567-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6567-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2023-3180" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t6cq-kfkw-wbch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/62354?format=api", "vulnerability_id": "VCID-takm-jn93-eqgb", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could lead to a denial of service.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1050.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1050.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1050", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08132", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08192", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08244", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08255", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08275", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08266", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08246", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08228", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08123", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08109", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08273", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.0825", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08211", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08177", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-1050" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1050", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1050" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014589", "reference_id": "1014589", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014589" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2069625", "reference_id": "2069625", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2069625" }, { "reference_url": "https://security.gentoo.org/glsa/202408-18", "reference_id": "GLSA-202408-18", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202408-18" }, { "reference_url": "https://usn.ubuntu.com/6167-1/", "reference_id": "USN-6167-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6167-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2022-1050" ], "risk_score": 3.7, "exploitability": "0.5", "weighted_severity": "7.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-takm-jn93-eqgb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80976?format=api", "vulnerability_id": "VCID-tk7k-71bb-97hh", "summary": "QEMU: assertion failure through usb_packet_unmap() in hw/usb/hcd-ehci.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25723.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25723.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25723", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10443", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10586", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10647", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10513", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10646", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10659", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10628", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10603", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10469", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10487", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10613", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10562", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10509", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25723" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1898579", "reference_id": "1898579", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1898579" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=975276", "reference_id": "975276", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=975276" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0648", "reference_id": "RHSA-2021:0648", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0648" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0771", "reference_id": "RHSA-2021:0771", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0771" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-25723" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tk7k-71bb-97hh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35387?format=api", "vulnerability_id": "VCID-tyv8-tzu8-23fj", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35517.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-35517.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35517", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24402", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24528", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24563", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24346", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24414", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24459", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24474", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.2443", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24373", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24388", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24378", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24349", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24225", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24211", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24172", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-35517" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35517", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-35517" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1915823", "reference_id": "1915823", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1915823" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980814", "reference_id": "980814", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=980814" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0711", "reference_id": "RHSA-2021:0711", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0711" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0743", "reference_id": "RHSA-2021:0743", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0743" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-35517" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tyv8-tzu8-23fj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82950?format=api", "vulnerability_id": "VCID-u1wj-9rfp-wyea", "summary": "QEMU: pvrdma: memory leakage when creating cq/qp", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20126.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20126.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20126", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29535", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29129", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29423", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29308", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29194", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29602", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29651", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29472", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29573", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29575", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.2953", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29477", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29496", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00111", "scoring_system": "epss", "scoring_elements": "0.29469", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20126" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20126", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20126" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02824.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02824.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/12/19/4", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/12/19/4" }, { "reference_url": "http://www.securityfocus.com/bid/106298", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106298" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660751", "reference_id": "1660751", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660751" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20126", "reference_id": "CVE-2018-20126", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20126" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2018-20126" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-u1wj-9rfp-wyea" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82948?format=api", "vulnerability_id": "VCID-vbq6-qtub-ffbg", "summary": "QEMU: rdma: OOB access when building scatter-gather array", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20124.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20124.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20124", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35716", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35418", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35537", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35505", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35913", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35944", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35775", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35825", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35848", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35855", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35814", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35791", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.3583", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35818", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00151", "scoring_system": "epss", "scoring_elements": "0.35769", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20124" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02822.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-12/msg02822.html" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/12/18/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/12/18/2" }, { "reference_url": "http://www.securityfocus.com/bid/106290", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106290" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660372", "reference_id": "1660372", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1660372" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922461", "reference_id": "922461", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922461" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20124", "reference_id": "CVE-2018-20124", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20124" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2018-20124" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vbq6-qtub-ffbg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80904?format=api", "vulnerability_id": "VCID-vpp8-a7sw-pqef", "summary": "QEMU: usb: hcd-ohci: out-of-bound access issue while processing transfer descriptors", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25624.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25624.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25624", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09846", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09939", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09986", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09884", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.0996", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.10009", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.10025", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09984", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09963", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09839", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09808", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09957", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09987", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09953", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00034", "scoring_system": "epss", "scoring_elements": "0.09898", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879801", "reference_id": "1879801", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1879801" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970541", "reference_id": "970541", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970541" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-25624" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vpp8-a7sw-pqef" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35425?format=api", "vulnerability_id": "VCID-vpu8-k8me-tfe6", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-26354.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-26354.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26354", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01502", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01386", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.014", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01485", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01493", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01494", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01408", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01401", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01395", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00011", "scoring_system": "epss", "scoring_elements": "0.01396", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04303", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04324", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04333", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00018", "scoring_system": "epss", "scoring_elements": "0.04365", "published_at": "2026-04-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-26354" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2063257", "reference_id": "2063257", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2063257" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5002", "reference_id": "RHSA-2022:5002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5263", "reference_id": "RHSA-2022:5263", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5263" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5821", "reference_id": "RHSA-2022:5821", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5821" }, { "reference_url": "https://usn.ubuntu.com/5489-1/", "reference_id": "USN-5489-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5489-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2022-26354" ], "risk_score": 1.1, "exploitability": "0.5", "weighted_severity": "2.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vpu8-k8me-tfe6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35418?format=api", "vulnerability_id": "VCID-vrwy-exwv-vyhr", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20203.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-20203.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20203", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08695", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08723", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08771", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08697", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08773", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08799", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08801", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08768", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08752", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08641", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08631", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08784", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08797", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08753", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08756", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-20203" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20203", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-20203" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922441", "reference_id": "1922441", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1922441" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984452", "reference_id": "984452", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984452" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-20203" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vrwy-exwv-vyhr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35390?format=api", "vulnerability_id": "VCID-vvaj-skpn-u3ar", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3409.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3409.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3409", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16897", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16727", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40602", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40612", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40593", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40573", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.4062", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.4059", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40512", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.4041", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40397", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40316", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.4063", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00188", "scoring_system": "epss", "scoring_elements": "0.40552", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3409" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928146", "reference_id": "1928146", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928146" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986795", "reference_id": "986795", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=986795" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3409" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vvaj-skpn-u3ar" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35376?format=api", "vulnerability_id": "VCID-wdjx-9f36-abgu", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15863.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15863.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13872", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13955", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14011", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13813", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13896", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13948", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13905", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13869", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1382", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31127", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31177", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31158", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.30761", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.30967", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.30845", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1853725", "reference_id": "1853725", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1853725" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-15863" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wdjx-9f36-abgu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61631?format=api", "vulnerability_id": "VCID-wg5b-8smu-b3fm", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10717.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10717.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10717", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37232", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37397", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37421", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37249", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.373", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37312", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37323", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.3729", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37262", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37309", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37291", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37238", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.37014", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.36982", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00163", "scoring_system": "epss", "scoring_elements": "0.36897", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10717" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10717", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10717" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1827808", "reference_id": "1827808", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1827808" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=959746", "reference_id": "959746", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=959746" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-10717" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wg5b-8smu-b3fm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35381?format=api", "vulnerability_id": "VCID-wjxf-kgdw-2kau", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16092.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16092.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11559", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11685", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11728", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11513", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.116", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1166", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11672", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11635", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11608", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1147", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11472", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11598", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11551", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11512", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1144", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-16092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860283", "reference_id": "1860283", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860283" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5111", "reference_id": "RHSA-2020:5111", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5111" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0346", "reference_id": "RHSA-2021:0346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0347", "reference_id": "RHSA-2021:0347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0459", "reference_id": "RHSA-2021:0459", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0459" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0934", "reference_id": "RHSA-2021:0934", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0934" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-16092" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wjxf-kgdw-2kau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4232?format=api", "vulnerability_id": "VCID-wm9d-ymbb-sfdc", "summary": "QEMU: usb: out-of-bounds r/w access issue", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14364.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14364.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94268", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94277", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94289", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.9429", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94299", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94304", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94308", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94333", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94332", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94309", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94324", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.9433", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94329", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.14223", "scoring_system": "epss", "scoring_elements": "0.94409", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869201", "reference_id": "1869201", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869201" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968947", "reference_id": "968947", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968947" }, { "reference_url": "https://security.gentoo.org/glsa/202009-14", "reference_id": "GLSA-202009-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202009-14" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4047", "reference_id": "RHSA-2020:4047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4048", "reference_id": "RHSA-2020:4048", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4048" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4049", "reference_id": "RHSA-2020:4049", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4049" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4050", "reference_id": "RHSA-2020:4050", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4050" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4051", "reference_id": "RHSA-2020:4051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4052", "reference_id": "RHSA-2020:4052", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4052" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4053", "reference_id": "RHSA-2020:4053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4053" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4054", "reference_id": "RHSA-2020:4054", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4054" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4055", "reference_id": "RHSA-2020:4055", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4056", "reference_id": "RHSA-2020:4056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4058", "reference_id": "RHSA-2020:4058", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4058" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4059", "reference_id": "RHSA-2020:4059", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4059" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4078", "reference_id": "RHSA-2020:4078", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4078" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4079", "reference_id": "RHSA-2020:4079", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4079" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4111", "reference_id": "RHSA-2020:4111", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4111" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4115", "reference_id": "RHSA-2020:4115", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4115" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4162", "reference_id": "RHSA-2020:4162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4162" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4167", "reference_id": "RHSA-2020:4167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4172", "reference_id": "RHSA-2020:4172", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4172" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4176", "reference_id": "RHSA-2020:4176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4290", "reference_id": "RHSA-2020:4290", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4290" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4291", "reference_id": "RHSA-2020:4291", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4291" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" }, { "reference_url": "https://usn.ubuntu.com/4511-1/", "reference_id": "USN-4511-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4511-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-335.html", "reference_id": "XSA-335", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-335.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-14364", "XSA-335" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wm9d-ymbb-sfdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80784?format=api", "vulnerability_id": "VCID-wyr6-c2nv-p3a2", "summary": "QEMU: ide: atapi: OOB access while processing read commands", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29443.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29443.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29443", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22657", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22831", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22875", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22666", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22741", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22793", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22815", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22776", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2272", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22736", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22731", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22689", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22529", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2252", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22518", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-29443" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29443", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29443" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1917446", "reference_id": "1917446", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1917446" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983575", "reference_id": "983575", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983575" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2322", "reference_id": "RHSA-2021:2322", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2322" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2529", "reference_id": "RHSA-2021:2529", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2529" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" }, { "reference_url": "https://usn.ubuntu.com/5010-1/", "reference_id": "USN-5010-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5010-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-29443" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wyr6-c2nv-p3a2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80977?format=api", "vulnerability_id": "VCID-x8ue-gf65-uket", "summary": "QEMU: heap buffer overflow in sdhci_sdma_transfer_multi_blocks() in hw/sd/sdhci.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-17380.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-17380.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-17380", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53606", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53556", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53588", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53571", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53607", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53612", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53595", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53541", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.53509", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00302", "scoring_system": "epss", "scoring_elements": "0.5356", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00325", "scoring_system": "epss", "scoring_elements": "0.55504", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00325", "scoring_system": "epss", "scoring_elements": "0.55393", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00326", "scoring_system": "epss", "scoring_elements": "0.5556", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00326", "scoring_system": "epss", "scoring_elements": "0.55534", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00326", "scoring_system": "epss", "scoring_elements": "0.55543", "published_at": "2026-04-24T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-17380" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17380", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17380" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862167", "reference_id": "1862167", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862167" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970937", "reference_id": "970937", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970937" }, { "reference_url": "https://usn.ubuntu.com/4650-1/", "reference_id": "USN-4650-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4650-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-17380" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-x8ue-gf65-uket" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35408?format=api", "vulnerability_id": "VCID-ycrs-vy13-wbff", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3713.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3713.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09598", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09663", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09714", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09622", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09692", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09741", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09753", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09721", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09705", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09595", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09567", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09719", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09677", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3544" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3545" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3546" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3638" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3682" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3713" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3748" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1994640", "reference_id": "1994640", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1994640" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=992727", "reference_id": "992727", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=992727" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-3713" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ycrs-vy13-wbff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35417?format=api", "vulnerability_id": "VCID-yt3z-g3w7-xfa5", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4207.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4207.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4207", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15388", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15427", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15497", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.153", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15438", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.154", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15361", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15307", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15305", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15295", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15211", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15216", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00049", "scoring_system": "epss", "scoring_elements": "0.15267", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.15932", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036966", "reference_id": "2036966", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2036966" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5002", "reference_id": "RHSA-2022:5002", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5002" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5821", "reference_id": "RHSA-2022:5821", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5821" }, { "reference_url": "https://usn.ubuntu.com/5489-1/", "reference_id": "USN-5489-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5489-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2021-4207" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yt3z-g3w7-xfa5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35422?format=api", "vulnerability_id": "VCID-zf4c-x45c-tudm", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0358.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0358.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0358", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10785", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1092", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10984", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1081", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10886", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10939", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.1094", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10907", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10885", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10749", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10762", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10883", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10844", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10802", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10742", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-0358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4206" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4207" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0358" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26353" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-26354" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044863", "reference_id": "2044863", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2044863" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0759", "reference_id": "RHSA-2022:0759", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0759" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0886", "reference_id": "RHSA-2022:0886", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0886" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0949", "reference_id": "RHSA-2022:0949", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0949" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0971", "reference_id": "RHSA-2022:0971", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0971" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0973", "reference_id": "RHSA-2022:0973", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0973" }, { "reference_url": "https://usn.ubuntu.com/5307-1/", "reference_id": "USN-5307-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5307-1/" }, { "reference_url": "https://usn.ubuntu.com/5489-1/", "reference_id": "USN-5489-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5489-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2022-0358" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zf4c-x45c-tudm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61636?format=api", "vulnerability_id": "VCID-zk4y-2xjp-vfcs", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13659.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13659.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10798", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10933", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10999", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10823", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10898", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10951", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10952", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10919", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10896", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10761", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10774", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10895", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10854", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10813", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10752", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842496", "reference_id": "1842496", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842496" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13659" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zk4y-2xjp-vfcs" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/31748?format=api", "vulnerability_id": "VCID-145f-vwpy-ukfg", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7039.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7039.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-7039", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74514", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74519", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74546", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.7452", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74552", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74568", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.7459", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74571", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74563", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.746", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74607", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74599", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74635", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74641", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00831", "scoring_system": "epss", "scoring_elements": "0.74643", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-7039" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551", "reference_id": "1791551", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1791551" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949084", "reference_id": "949084", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949084" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949085", "reference_id": "949085", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=949085" }, { "reference_url": "https://security.gentoo.org/glsa/202005-02", "reference_id": "GLSA-202005-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202005-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0348", "reference_id": "RHSA-2020:0348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0775", "reference_id": "RHSA-2020:0775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1116", "reference_id": "RHSA-2020:1116", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1116" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1150", "reference_id": "RHSA-2020:1150", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1150" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1261", "reference_id": "RHSA-2020:1261", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1296", "reference_id": "RHSA-2020:1296", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1296" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1300", "reference_id": "RHSA-2020:1300", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1300" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1344", "reference_id": "RHSA-2020:1344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1351", "reference_id": "RHSA-2020:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1352", "reference_id": "RHSA-2020:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1358", "reference_id": "RHSA-2020:1358", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1358" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1360", "reference_id": "RHSA-2020:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2342", "reference_id": "RHSA-2020:2342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2730", "reference_id": "RHSA-2020:2730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2730" }, { "reference_url": "https://usn.ubuntu.com/4283-1/", "reference_id": "USN-4283-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4283-1/" }, { "reference_url": "https://usn.ubuntu.com/4632-1/", "reference_id": "USN-4632-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4632-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-7039" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-145f-vwpy-ukfg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56776?format=api", "vulnerability_id": "VCID-1erd-fd8p-hqch", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13672.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13672.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00668", "scoring_system": "epss", "scoring_elements": "0.71226", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73714", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73671", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73704", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73586", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73609", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73582", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73618", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73631", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73653", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73635", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73626", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.7367", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00777", "scoring_system": "epss", "scoring_elements": "0.73679", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486560", "reference_id": "1486560", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486560" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873851", "reference_id": "873851", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873851" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2162", "reference_id": "RHSA-2018:2162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2162" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-13672" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1erd-fd8p-hqch" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81711?format=api", "vulnerability_id": "VCID-28wt-9aqz-xqbg", "summary": "qemu: OOB read and write due to integer overflow in sm501_2d_operation() in hw/display/sm501.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12829.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-12829.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.3059", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30726", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30774", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30649", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30682", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30686", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30641", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30596", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30622", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30604", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.3057", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30391", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30276", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00117", "scoring_system": "epss", "scoring_elements": "0.30197", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1808510", "reference_id": "1808510", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1808510" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961451", "reference_id": "961451", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961451" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-12829" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-28wt-9aqz-xqbg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81402?format=api", "vulnerability_id": "VCID-29d8-uet3-syfh", "summary": "QEMU: heap buffer overflow in iscsi_aio_ioctl_cb() in block/iscsi.c may lead to information disclosure", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11947.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-11947.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16404", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16586", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16649", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16449", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16535", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16589", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1657", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1653", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16471", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16412", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16433", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1647", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16363", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16362", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16317", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1912765", "reference_id": "1912765", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1912765" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0648", "reference_id": "RHSA-2021:0648", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0648" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/4725-1/", "reference_id": "USN-4725-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4725-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-11947" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-29d8-uet3-syfh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48343?format=api", "vulnerability_id": "VCID-2ywm-rb9g-x3fr", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could cause a Denial of Service condition.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10028.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10028.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10028", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24979", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24774", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24832", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.2482", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25057", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.25096", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24871", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.2494", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24986", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24999", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24959", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24904", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24918", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24911", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00087", "scoring_system": "epss", "scoring_elements": "0.24887", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2016-10028" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10028", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10028" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:C" }, { "value": "5.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1406367", "reference_id": "1406367", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1406367" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=849798", "reference_id": "849798", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=849798" }, { "reference_url": "https://security.gentoo.org/glsa/201701-49", "reference_id": "GLSA-201701-49", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-49" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://usn.ubuntu.com/3268-1/", "reference_id": "USN-3268-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3268-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2016-10028" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "4.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2ywm-rb9g-x3fr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/43770?format=api", "vulnerability_id": "VCID-32jy-dr7t-2uas", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20815.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-20815.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88157", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88166", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88182", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88188", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88208", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88214", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88224", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88217", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.8823", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88229", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88248", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88253", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.03861", "scoring_system": "epss", "scoring_elements": "0.88256", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1693101", "reference_id": "1693101", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1693101" }, { "reference_url": "https://security.gentoo.org/glsa/201904-25", "reference_id": "GLSA-201904-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201904-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1175", "reference_id": "RHSA-2019:1175", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1667", "reference_id": "RHSA-2019:1667", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1723", "reference_id": "RHSA-2019:1723", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1723" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1743", "reference_id": "RHSA-2019:1743", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1743" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1881", "reference_id": "RHSA-2019:1881", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1881" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1968", "reference_id": "RHSA-2019:1968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2507", "reference_id": "RHSA-2019:2507", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2507" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3978-1/", "reference_id": "USN-3978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3978-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-20815" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-32jy-dr7t-2uas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84025?format=api", "vulnerability_id": "VCID-3qwz-gg8s-2ugm", "summary": "QEMU: VGA: reachable assert failure during display update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13673.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13673.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13673", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55238", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55329", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55308", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55244", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.5526", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55284", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55265", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55316", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55327", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55305", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55287", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00322", "scoring_system": "epss", "scoring_elements": "0.55324", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00732", "scoring_system": "epss", "scoring_elements": "0.72645", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13673" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13673", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13673" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486588", "reference_id": "1486588", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486588" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-13673" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3qwz-gg8s-2ugm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73370?format=api", "vulnerability_id": "VCID-4276-jfy3-h3ck", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10839.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10839.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10839", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81418", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81428", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81449", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81448", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81475", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81481", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81502", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.8149", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81483", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81519", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81521", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81522", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81545", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81553", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01561", "scoring_system": "epss", "scoring_elements": "0.81558", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-10839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1581013", "reference_id": "1581013", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1581013" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=910431", "reference_id": "910431", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=910431" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-10839" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4276-jfy3-h3ck" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/84378?format=api", "vulnerability_id": "VCID-46n7-vgn3-nffj", "summary": "Qemu: scsi: megasas: null pointer dereference while processing megasas command", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9503.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9503.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9503", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21443", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21278", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21299", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21298", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21611", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21668", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21424", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21501", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.2156", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21571", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21533", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21478", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21473", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21479", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21447", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9503" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9503", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9503" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1459477", "reference_id": "1459477", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1459477" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865754", "reference_id": "865754", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865754" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9503" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-46n7-vgn3-nffj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4098?format=api", "vulnerability_id": "VCID-4s1w-v1qs-9uhp", "summary": "blkif responses leak backend stack data", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10911.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10911.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13595", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13778", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1373", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1364", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13637", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13709", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1372", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13689", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24064", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24002", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24017", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24081", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24126", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.24165", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00082", "scoring_system": "epss", "scoring_elements": "0.23951", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9940", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9940" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000363", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000363" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000365", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000365" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10810", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10810" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7482", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7482" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7533", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7533" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7541", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7541" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7542", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7542" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7889", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7889" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9605", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9605" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:N/A:N" }, { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458870", "reference_id": "1458870", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458870" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869706", "reference_id": "869706", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869706" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" }, { "reference_url": "https://usn.ubuntu.com/3468-1/", "reference_id": "USN-3468-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3468-1/" }, { "reference_url": "https://usn.ubuntu.com/3468-2/", "reference_id": "USN-3468-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3468-2/" }, { "reference_url": "https://usn.ubuntu.com/3468-3/", "reference_id": "USN-3468-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3468-3/" }, { "reference_url": "https://usn.ubuntu.com/3469-1/", "reference_id": "USN-3469-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3469-1/" }, { "reference_url": "https://usn.ubuntu.com/3469-2/", "reference_id": "USN-3469-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3469-2/" }, { "reference_url": "https://usn.ubuntu.com/3470-1/", "reference_id": "USN-3470-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3470-1/" }, { "reference_url": "https://usn.ubuntu.com/3470-2/", "reference_id": "USN-3470-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3470-2/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-216.html", "reference_id": "XSA-216", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-216.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-10911", "XSA-216" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4s1w-v1qs-9uhp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83218?format=api", "vulnerability_id": "VCID-56ng-2tm1-5qhk", "summary": "QEMU: seccomp: blacklist is not applied to all threads", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15746.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15746.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15746", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16659", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16829", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16887", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16671", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16756", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1681", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16789", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16745", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16687", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16624", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16631", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1667", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16573", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16562", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16529", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-15746" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15746", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15746" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1615637", "reference_id": "1615637", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1615637" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907500", "reference_id": "907500", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3267", "reference_id": "RHSA-2020:3267", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3267" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3906", "reference_id": "RHSA-2020:3906", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3906" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3907", "reference_id": "RHSA-2020:3907", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3907" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-15746" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-56ng-2tm1-5qhk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73618?format=api", "vulnerability_id": "VCID-5xgg-2mh6-gfg1", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16872.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16872.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.5076", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50816", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50842", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50799", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50856", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50854", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50895", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50873", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50857", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50901", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.5088", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50829", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50838", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00274", "scoring_system": "epss", "scoring_elements": "0.50798", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1656114", "reference_id": "1656114", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1656114" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916397", "reference_id": "916397", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916397" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-16872" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5xgg-2mh6-gfg1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61635?format=api", "vulnerability_id": "VCID-6ef4-c38a-j7ca", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13362.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13362.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26973", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27014", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2705", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26841", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26909", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26956", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2696", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26916", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26859", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26871", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26842", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26803", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26745", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26737", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26667", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840999", "reference_id": "1840999", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840999" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961887", "reference_id": "961887", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961887" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13362" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6ef4-c38a-j7ca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61634?format=api", "vulnerability_id": "VCID-6hqu-ecs5-zqeb", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13361.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13361.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26973", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27014", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2705", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26841", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26909", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26956", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2696", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26916", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26859", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26871", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26842", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26803", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26745", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26737", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26667", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840980", "reference_id": "1840980", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1840980" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961888", "reference_id": "961888", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961888" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13361" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6hqu-ecs5-zqeb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73621?format=api", "vulnerability_id": "VCID-7w8v-hby8-dya5", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17958.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17958.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7544", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75483", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75492", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75511", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7549", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7548", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75522", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75527", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75516", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7555", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75554", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75558", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.7546", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75428", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00888", "scoring_system": "epss", "scoring_elements": "0.75425", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/10/08/1", "reference_id": "1", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-28T15:48:25Z/" } ], "url": "http://www.openwall.com/lists/oss-security/2018/10/08/1" }, { "reference_url": "http://www.securityfocus.com/bid/105556", "reference_id": "105556", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-28T15:48:25Z/" } ], "url": "http://www.securityfocus.com/bid/105556" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636712", "reference_id": "1636712", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636712" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911499", "reference_id": "911499", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911499" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/01/msg00023.html", "reference_id": "msg00023.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-28T15:48:25Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2019/01/msg00023.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03269.html", "reference_id": "msg03269.html", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-28T15:48:25Z/" } ], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-09/msg03269.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-28T15:48:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-28T15:48:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2026-04-28T15:48:25Z/" } ], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-17958" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7w8v-hby8-dya5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81243?format=api", "vulnerability_id": "VCID-7zkh-xs1s-guh6", "summary": "QEMU: slirp: networking out-of-bounds read information disclosure vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10756.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10756.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06882", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06768", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06759", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06903", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06888", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0691", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06797", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06835", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.0684", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06833", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00025", "scoring_system": "epss", "scoring_elements": "0.06826", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.06998", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07052", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.07032", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00026", "scoring_system": "epss", "scoring_elements": "0.06894", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835986", "reference_id": "1835986", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1835986" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3586", "reference_id": "RHSA-2020:3586", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3586" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4059", "reference_id": "RHSA-2020:4059", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4059" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4694", "reference_id": "RHSA-2020:4694", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4694" }, { "reference_url": "https://usn.ubuntu.com/4437-1/", "reference_id": "USN-4437-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4437-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-10756" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7zkh-xs1s-guh6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82268?format=api", "vulnerability_id": "VCID-8jjd-u5mc-zbde", "summary": "qemu: scsi: lsi: potential infinite loop when executing script in lsi_execute_script", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00038.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12068.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12068.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24813", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24604", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24719", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24659", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24648", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24892", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24931", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24706", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24773", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.2482", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24833", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24794", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24737", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24749", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00086", "scoring_system": "epss", "scoring_elements": "0.24742", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=de594e47659029316bbf9391efb79da0a1a08e08", "reference_id": "", "reference_type": "", "scores": [], "url": "https://git.qemu.org/?p=qemu.git%3Ba=commit%3Bh=de594e47659029316bbf9391efb79da0a1a08e08" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00020.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2020/07/msg00020.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01518.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01518.html" }, { "reference_url": "https://security-tracker.debian.org/tracker/CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security-tracker.debian.org/tracker/CVE-2019-12068" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4665" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1773749", "reference_id": "1773749", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1773749" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:2.1\\+dfsg-12\\+deb8u6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:2.1\\+dfsg-12\\+deb8u6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:2.1\\+dfsg-12\\+deb8u6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:2.8\\+dfsg-6\\+deb9u8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:2.8\\+dfsg-6\\+deb9u8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:2.8\\+dfsg-6\\+deb9u8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\~deb10u1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\~deb10u1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\~deb10u1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\+deb10u2:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\+deb10u2:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:3.1\\+dfsg-8\\+deb10u2:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:4.1-1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:1\\:4.1-1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:1\\:4.1-1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-12068", "reference_id": "CVE-2019-12068", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-12068" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-12068" ], "risk_score": 1.9, "exploitability": "0.5", "weighted_severity": "3.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8jjd-u5mc-zbde" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63734?format=api", "vulnerability_id": "VCID-ac7j-emx5-v7cn", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9524.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9524.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.84045", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.83986", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.83982", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.84006", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.84007", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.84009", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.84035", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02079", "scoring_system": "epss", "scoring_elements": "0.84042", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88673", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88624", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88669", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88685", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88633", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88649", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.04157", "scoring_system": "epss", "scoring_elements": "0.88651", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9524" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1460170", "reference_id": "1460170", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1460170" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865755", "reference_id": "865755", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=865755" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1681", "reference_id": "RHSA-2017:1681", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1681" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:1682", "reference_id": "RHSA-2017:1682", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:1682" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9524" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ac7j-emx5-v7cn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69424?format=api", "vulnerability_id": "VCID-atzs-876n-byg6", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15268.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15268.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83872", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83803", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83798", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83832", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83833", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83859", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02031", "scoring_system": "epss", "scoring_elements": "0.83867", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.02569", "scoring_system": "epss", "scoring_elements": "0.85465", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87497", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87503", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87515", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87478", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87462", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.03448", "scoring_system": "epss", "scoring_elements": "0.87476", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15268" }, { "reference_url": "https://bugs.launchpad.net/qemu/+bug/1718964", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugs.launchpad.net/qemu/+bug/1718964" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02278.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02278.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.securityfocus.com/bid/101277", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/101277" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1496879", "reference_id": "1496879", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1496879" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880836", "reference_id": "880836", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880836" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15268", "reference_id": "CVE-2017-15268", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15268" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15268" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-atzs-876n-byg6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73640?format=api", "vulnerability_id": "VCID-b7v6-247j-kfcs", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12155.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-12155.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78415", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78421", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78452", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78436", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78462", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78467", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78492", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78474", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78495", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78494", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78491", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78524", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78531", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01147", "scoring_system": "epss", "scoring_elements": "0.78546", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1712670", "reference_id": "1712670", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1712670" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929353", "reference_id": "929353", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=929353" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2607", "reference_id": "RHSA-2019:2607", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3179", "reference_id": "RHSA-2019:3179", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3345", "reference_id": "RHSA-2019:3345", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3345" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3742", "reference_id": "RHSA-2019:3742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3787", "reference_id": "RHSA-2019:3787", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3787" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:4344", "reference_id": "RHSA-2019:4344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:4344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1216", "reference_id": "RHSA-2020:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1216" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-12155" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-b7v6-247j-kfcs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63736?format=api", "vulnerability_id": "VCID-bbmg-x8h6-67e5", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11334.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11334.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.0943", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09424", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09409", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09301", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09304", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09449", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.09502", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00033", "scoring_system": "epss", "scoring_elements": "0.0947", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10856", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10724", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.108", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10869", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10833", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10897", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12197", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471638", "reference_id": "1471638", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1471638" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869173", "reference_id": "869173", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869173" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3369", "reference_id": "RHSA-2017:3369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3466", "reference_id": "RHSA-2017:3466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3470", "reference_id": "RHSA-2017:3470", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3471", "reference_id": "RHSA-2017:3471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3472", "reference_id": "RHSA-2017:3472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3473", "reference_id": "RHSA-2017:3473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3474", "reference_id": "RHSA-2017:3474", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3474" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-11334" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bbmg-x8h6-67e5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69422?format=api", "vulnerability_id": "VCID-bj4j-2yxz-pyeh", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15038.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15038.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08029", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08107", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08089", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07995", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07979", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08137", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08093", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.08057", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16716", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1677", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1675", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16617", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16789", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16847", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16631", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:P/I:N/A:N" }, { "value": "3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg00729.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg00729.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/10/06/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/10/06/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1499110", "reference_id": "1499110", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1499110" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877890", "reference_id": "877890", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=877890" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15038", "reference_id": "CVE-2017-15038", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:N/A:N" }, { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15038" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15038" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bj4j-2yxz-pyeh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82097?format=api", "vulnerability_id": "VCID-burb-pa38-fqhw", "summary": "QEMU: vnc: memory leakage upon disconnect", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20382.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20382.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13515", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13615", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13676", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13474", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13555", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13605", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13578", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.1354", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13492", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13404", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.134", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13473", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13478", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13449", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13343", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1810390", "reference_id": "1810390", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1810390" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2774", "reference_id": "RHSA-2020:2774", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2774" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3267", "reference_id": "RHSA-2020:3267", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3267" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3906", "reference_id": "RHSA-2020:3906", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3906" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3907", "reference_id": "RHSA-2020:3907", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3907" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4167", "reference_id": "RHSA-2020:4167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4167" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-20382" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-burb-pa38-fqhw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63621?format=api", "vulnerability_id": "VCID-c834-hdmj-cfe1", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9374.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9374.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27706", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27309", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27491", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27385", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27744", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27782", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27575", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27643", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27685", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.2769", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27647", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27589", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27597", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27533", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9374" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1459132", "reference_id": "1459132", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1459132" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864568", "reference_id": "864568", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864568" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9374" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c834-hdmj-cfe1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63737?format=api", "vulnerability_id": "VCID-chjc-4r36-y3f8", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11434.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11434.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07772", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07843", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07829", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07743", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07718", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07871", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07828", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00028", "scoring_system": "epss", "scoring_elements": "0.07795", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16371", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16178", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16307", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16353", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16361", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16423", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00052", "scoring_system": "epss", "scoring_elements": "0.16221", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:C" }, { "value": "8.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472611", "reference_id": "1472611", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1472611" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869171", "reference_id": "869171", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869171" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-11434" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-chjc-4r36-y3f8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83048?format=api", "vulnerability_id": "VCID-cmqc-g49c-wbeq", "summary": "Qemu: bt: Integer overflow in Bluetooth routines allows memory corruption", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19665.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19665.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19665", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42799", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42869", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42896", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42835", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42885", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42898", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42921", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42886", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42929", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42917", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42855", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42779", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00206", "scoring_system": "epss", "scoring_elements": "0.42697", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19665" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1607652", "reference_id": "1607652", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1607652" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916278", "reference_id": "916278", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=916278" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-19665" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cmqc-g49c-wbeq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73623?format=api", "vulnerability_id": "VCID-cy79-xgar-eqgr", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00004.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00004.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00028.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00028.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00043.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-12/msg00043.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18849.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18849.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14459", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14303", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14357", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14384", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14359", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14522", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14592", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14402", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14488", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14542", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.1449", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14453", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14395", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14288", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00010.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00010.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LQIBTGNRDQEXGAAYHE4JIWFAYFNHZ6QP/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LQIBTGNRDQEXGAAYHE4JIWFAYFNHZ6QP/" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-10/msg06401.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-10/msg06401.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20190411-0006/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security.netapp.com/advisory/ntap-20190411-0006/" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/11/01/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/11/01/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644973", "reference_id": "1644973", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644973" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912535", "reference_id": "912535", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912535" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-18849", "reference_id": "CVE-2018-18849", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-18849" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-18849" ], "risk_score": 2.9, "exploitability": "0.5", "weighted_severity": "5.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-cy79-xgar-eqgr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/79249?format=api", "vulnerability_id": "VCID-d6gd-j7ks-xkgk", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00034.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15890.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15890.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15890", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.6869", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68849", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68787", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68836", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68842", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68709", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68727", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68705", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68757", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68776", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68799", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68785", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68756", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68798", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00575", "scoring_system": "epss", "scoring_elements": "0.68808", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15890" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15890" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7039" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.freedesktop.org/slirp/libslirp/commit/c5927943", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gitlab.freedesktop.org/slirp/libslirp/commit/c5927943" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00021.html" }, { "reference_url": "https://seclists.org/bugtraq/2020/Feb/0", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2020/Feb/0" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4616", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4616" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/09/06/3", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/09/06/3" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749716", "reference_id": "1749716", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1749716" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939868", "reference_id": "939868", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939868" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939869", "reference_id": "939869", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=939869" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libslirp_project:libslirp:4.0.0:-:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:libslirp_project:libslirp:4.0.0:-:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:libslirp_project:libslirp:4.0.0:-:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.1.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:4.1.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.1.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15890", "reference_id": "CVE-2019-15890", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15890" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0348", "reference_id": "RHSA-2020:0348", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0775", "reference_id": "RHSA-2020:0775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4676", "reference_id": "RHSA-2020:4676", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4676" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-15890" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d6gd-j7ks-xkgk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56778?format=api", "vulnerability_id": "VCID-d8cd-qgg7-fyed", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-16845.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-16845.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83891", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.84025", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83984", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83985", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.84012", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.84019", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83905", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83921", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83924", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83948", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83954", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.8397", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.83964", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02074", "scoring_system": "epss", "scoring_elements": "0.8396", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:N/A:N" }, { "value": "3.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg02982.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg02982.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.securityfocus.com/bid/101923", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/101923" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1514148", "reference_id": "1514148", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1514148" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882136", "reference_id": "882136", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882136" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-16845", "reference_id": "CVE-2017-16845", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:P/I:N/A:P" }, { "value": "10.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-16845" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" }, { "reference_url": "https://usn.ubuntu.com/3649-1/", "reference_id": "USN-3649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3649-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-16845" ], "risk_score": 4.5, "exploitability": "0.5", "weighted_severity": "9.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d8cd-qgg7-fyed" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73631?format=api", "vulnerability_id": "VCID-dgzy-z4ad-ubc4", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19489.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19489.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12168", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12285", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12332", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.1213", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12211", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12261", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12268", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.1223", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12193", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12081", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12083", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12196", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12174", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12139", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0004", "scoring_system": "epss", "scoring_elements": "0.12026", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1653156", "reference_id": "1653156", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1653156" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914727", "reference_id": "914727", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914727" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-19489" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dgzy-z4ad-ubc4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61637?format=api", "vulnerability_id": "VCID-dqbd-gqg9-2kgs", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13754.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13754.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08657", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08685", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08733", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08656", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08757", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08735", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.0872", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.0861", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08597", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08751", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08762", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08716", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.08721", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842363", "reference_id": "1842363", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842363" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2521", "reference_id": "RHSA-2021:2521", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2521" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:3061", "reference_id": "RHSA-2021:3061", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:3061" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13754" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dqbd-gqg9-2kgs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82965?format=api", "vulnerability_id": "VCID-dthd-mp8z-8ucg", "summary": "QEMU: dev-mtp: path traversal in usb_mtp_write_data of the Media Transfer Protocol (MTP)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16867.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16867.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16867", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34167", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34506", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34534", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34402", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34444", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34473", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34475", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34436", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34412", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34447", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34434", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34394", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34022", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.34003", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00142", "scoring_system": "epss", "scoring_elements": "0.33918", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16867" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16867", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16867" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1654885", "reference_id": "1654885", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1654885" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=915884", "reference_id": "915884", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=915884" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-16867" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dthd-mp8z-8ucg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63623?format=api", "vulnerability_id": "VCID-ecy5-s73b-n3db", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10664.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10664.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.05117", "scoring_system": "epss", "scoring_elements": "0.8987", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.05117", "scoring_system": "epss", "scoring_elements": "0.89856", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.05117", "scoring_system": "epss", "scoring_elements": "0.89849", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.05117", "scoring_system": "epss", "scoring_elements": "0.89863", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.05117", "scoring_system": "epss", "scoring_elements": "0.89872", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.9086", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90882", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90889", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90898", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90844", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.9085", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06241", "scoring_system": "epss", "scoring_elements": "0.90871", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1466190", "reference_id": "1466190", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1466190" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866674", "reference_id": "866674", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=866674" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2390", "reference_id": "RHSA-2017:2390", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2390" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2445", "reference_id": "RHSA-2017:2445", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2445" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3466", "reference_id": "RHSA-2017:3466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3470", "reference_id": "RHSA-2017:3470", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3471", "reference_id": "RHSA-2017:3471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3472", "reference_id": "RHSA-2017:3472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3473", "reference_id": "RHSA-2017:3473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3474", "reference_id": "RHSA-2017:3474", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3474" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-10664" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ecy5-s73b-n3db" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81469?format=api", "vulnerability_id": "VCID-egyg-bbm9-8qea", "summary": "QEMU: slirp: use-after-free in ip_reass() function in ip_input.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1983.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-1983.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.34973", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35317", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35083", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00148", "scoring_system": "epss", "scoring_elements": "0.35062", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42299", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42307", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42315", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42338", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42301", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42273", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00202", "scoring_system": "epss", "scoring_elements": "0.42323", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43138", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43052", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43077", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00207", "scoring_system": "epss", "scoring_elements": "0.43111", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-1983" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1829825", "reference_id": "1829825", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1829825" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3053", "reference_id": "RHSA-2020:3053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3053" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4079", "reference_id": "RHSA-2020:4079", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4079" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4290", "reference_id": "RHSA-2020:4290", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4290" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4676", "reference_id": "RHSA-2020:4676", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4676" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0346", "reference_id": "RHSA-2021:0346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0459", "reference_id": "RHSA-2021:0459", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0459" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0934", "reference_id": "RHSA-2021:0934", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0934" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-1983" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-egyg-bbm9-8qea" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34657?format=api", "vulnerability_id": "VCID-ewsp-7ydm-5ub3", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13164.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-13164.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.0563", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05392", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.0556", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05592", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05538", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05575", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05598", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05571", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05559", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05552", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05501", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05468", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05537", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00021", "scoring_system": "epss", "scoring_elements": "0.05503", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1722559", "reference_id": "1722559", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1722559" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931351", "reference_id": "931351", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931351" }, { "reference_url": "https://security.gentoo.org/glsa/202003-66", "reference_id": "GLSA-202003-66", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-66" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-13164" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ewsp-7ydm-5ub3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73373?format=api", "vulnerability_id": "VCID-f4w9-adpm-tuht", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17963.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17963.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17963", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01449", "scoring_system": "epss", "scoring_elements": "0.80843", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01449", "scoring_system": "epss", "scoring_elements": "0.8083", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81229", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81253", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81251", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81279", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81284", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81305", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81291", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81321", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81323", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81322", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81345", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01526", "scoring_system": "epss", "scoring_elements": "0.81221", "published_at": "2026-04-01T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17963" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636777", "reference_id": "1636777", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636777" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911469", "reference_id": "911469", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911469" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2166", "reference_id": "RHSA-2019:2166", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2166" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-17963" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f4w9-adpm-tuht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69423?format=api", "vulnerability_id": "VCID-fp83-zgum-ryb8", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15119.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15119.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81351", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81488", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81476", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81484", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.8136", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81382", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.8138", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81409", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81413", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81435", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81422", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81415", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81452", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81453", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0155", "scoring_system": "epss", "scoring_elements": "0.81455", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1516925", "reference_id": "1516925", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1516925" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883399", "reference_id": "883399", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883399" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15119" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fp83-zgum-ryb8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56779?format=api", "vulnerability_id": "VCID-gmvy-m5mq-yycx", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17381.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-17381.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40072", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.39859", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40235", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40127", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.39954", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.39939", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.4022", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40245", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40167", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40231", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40243", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40205", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00185", "scoring_system": "epss", "scoring_elements": "0.40187", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "4.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-12/msg00166.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-12/msg00166.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/12/05/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/12/05/2" }, { "reference_url": "http://www.securityfocus.com/bid/102059", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/102059" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1520782", "reference_id": "1520782", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1520782" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883625", "reference_id": "883625", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883625" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc0:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.11.0:rc0:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc0:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc1:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.11.0:rc1:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc1:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc2:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.11.0:rc2:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc2:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc3:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:2.11.0:rc3:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:2.11.0:rc3:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17381", "reference_id": "CVE-2017-17381", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-17381" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-17381" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gmvy-m5mq-yycx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73626?format=api", "vulnerability_id": "VCID-gntc-n53u-n3aj", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18954.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18954.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30839", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30966", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.31013", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30831", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30889", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30919", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30921", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30879", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30834", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30865", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30845", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.3081", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30645", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30529", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30445", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1526029", "reference_id": "1526029", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1526029" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914604", "reference_id": "914604", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914604" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-18954" ], "risk_score": 2.0, "exploitability": "0.5", "weighted_severity": "4.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gntc-n53u-n3aj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/34658?format=api", "vulnerability_id": "VCID-gqtx-g1cs-6ybn", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8608.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-8608.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-8608", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81079", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81088", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81113", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.8114", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81146", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81165", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81151", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81144", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81181", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81183", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81203", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81211", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01501", "scoring_system": "epss", "scoring_elements": "0.81216", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-8608" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8608", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8608" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798453", "reference_id": "1798453", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1798453" }, { "reference_url": "https://security.gentoo.org/glsa/202003-66", "reference_id": "GLSA-202003-66", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202003-66" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1208", "reference_id": "RHSA-2020:1208", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1208" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1209", "reference_id": "RHSA-2020:1209", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1209" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1261", "reference_id": "RHSA-2020:1261", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1292", "reference_id": "RHSA-2020:1292", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1292" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1300", "reference_id": "RHSA-2020:1300", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1300" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1351", "reference_id": "RHSA-2020:1351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1352", "reference_id": "RHSA-2020:1352", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1379", "reference_id": "RHSA-2020:1379", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1379" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1403", "reference_id": "RHSA-2020:1403", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1403" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2342", "reference_id": "RHSA-2020:2342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2730", "reference_id": "RHSA-2020:2730", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2730" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2773", "reference_id": "RHSA-2020:2773", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2773" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2774", "reference_id": "RHSA-2020:2774", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2774" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2844", "reference_id": "RHSA-2020:2844", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2844" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:3040", "reference_id": "RHSA-2020:3040", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:3040" }, { "reference_url": "https://usn.ubuntu.com/4283-1/", "reference_id": "USN-4283-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4283-1/" }, { "reference_url": "https://usn.ubuntu.com/4632-1/", "reference_id": "USN-4632-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4632-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-8608" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gqtx-g1cs-6ybn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/81332?format=api", "vulnerability_id": "VCID-h5sc-3zrc-23dn", "summary": "QEMU: loader: OOB access while loading registered ROM may lead to code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13765.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13765.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58804", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58879", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58901", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58868", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.5892", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58926", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58943", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58907", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58941", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58945", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58923", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58906", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58922", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00371", "scoring_system": "epss", "scoring_elements": "0.58908", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13765" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842912", "reference_id": "1842912", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842912" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0347", "reference_id": "RHSA-2021:0347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0347" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/7094-1/", "reference_id": "USN-7094-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7094-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13765" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h5sc-3zrc-23dn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73629?format=api", "vulnerability_id": "VCID-hwt1-11ew-sqhv", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19364.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19364.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22557", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.2273", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22774", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22564", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.2264", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22692", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22709", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.2267", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22612", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22627", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22624", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22576", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22421", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.2241", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22408", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1643252", "reference_id": "1643252", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1643252" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914599", "reference_id": "914599", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914599" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-19364" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hwt1-11ew-sqhv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82901?format=api", "vulnerability_id": "VCID-jdmp-aggh-ufhy", "summary": "QEMU: NULL pointer dereference in hw/sparc64/sun4u.c leading to DoS", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5008.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-5008.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-5008", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78565", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78572", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78603", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78584", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.7861", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78616", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78641", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78622", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78615", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78644", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78642", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78638", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78669", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78677", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01164", "scoring_system": "epss", "scoring_elements": "0.78693", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-5008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-5008" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705915", "reference_id": "1705915", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1705915" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927439", "reference_id": "927439", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927439" }, { "reference_url": "https://usn.ubuntu.com/3978-1/", "reference_id": "USN-3978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3978-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-5008" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jdmp-aggh-ufhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56782?format=api", "vulnerability_id": "VCID-jnxy-g6wu-8ubu", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5683.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-5683.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07573", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07682", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07714", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07681", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.0774", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07759", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07758", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00027", "scoring_system": "epss", "scoring_elements": "0.07744", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08059", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08117", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08025", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.0801", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08167", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08123", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08086", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1530356", "reference_id": "1530356", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1530356" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=887392", "reference_id": "887392", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=887392" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2162", "reference_id": "RHSA-2018:2162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2162" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-5683" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jnxy-g6wu-8ubu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83605?format=api", "vulnerability_id": "VCID-jq6v-ra9m-sqgz", "summary": "QEMU: cirrus: OOB access when updating VGA display", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7858.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7858.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7858", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17159", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17324", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17372", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17151", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17242", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.173", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17314", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17264", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17205", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17144", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.1715", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17185", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.1709", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17073", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00055", "scoring_system": "epss", "scoring_elements": "0.17017", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7858" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7858", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7858" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1553402", "reference_id": "1553402", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1553402" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892497", "reference_id": "892497", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892497" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1369", "reference_id": "RHSA-2018:1369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1416", "reference_id": "RHSA-2018:1416", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1416" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1643", "reference_id": "RHSA-2018:1643", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1643" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1644", "reference_id": "RHSA-2018:1644", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1644" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1645", "reference_id": "RHSA-2018:1645", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1645" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1646", "reference_id": "RHSA-2018:1646", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1646" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2162", "reference_id": "RHSA-2018:2162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2162" }, { "reference_url": "https://usn.ubuntu.com/3649-1/", "reference_id": "USN-3649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3649-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-7858" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jq6v-ra9m-sqgz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82280?format=api", "vulnerability_id": "VCID-ke54-4uc4-rkbs", "summary": "qemu: hw/display/bochs-display.c does not ensure a sufficient PCI config space allocation leading to a buffer overflow involving the PCIe extended config space", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15034.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-15034.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40955", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40764", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40956", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40861", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40848", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41036", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41068", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.40994", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41043", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.4105", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41069", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41033", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41017", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.4106", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00191", "scoring_system": "epss", "scoring_elements": "0.41031", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-15034" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20382" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11947" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1983" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01959.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-08/msg01959.html" }, { "reference_url": "https://www.debian.org/security/2020/dsa-4665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2020/dsa-4665" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1812659", "reference_id": "1812659", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1812659" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:4.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:4.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15034", "reference_id": "CVE-2019-15034", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:P/I:P/A:P" }, { "value": "5.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-15034" }, { "reference_url": "https://usn.ubuntu.com/4372-1/", "reference_id": "USN-4372-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4372-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-15034" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ke54-4uc4-rkbs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63735?format=api", "vulnerability_id": "VCID-km1b-1rvd-q3fa", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10806.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10806.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.1538", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15344", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15393", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15437", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15436", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26431", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26273", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26321", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26328", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26282", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26223", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26228", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26336", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26389", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26206", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11334" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11434" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9524" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:N/I:N/A:C" }, { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1468496", "reference_id": "1468496", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1468496" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867751", "reference_id": "867751", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867751" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-10806" ], "risk_score": 1.8, "exploitability": "0.5", "weighted_severity": "3.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-km1b-1rvd-q3fa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48521?format=api", "vulnerability_id": "VCID-kvww-v5vg-qbdt", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could lead to the execution of arbitrary code on the host system.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5578.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5578.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5578", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41884", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41948", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41976", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41902", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41952", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41963", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41987", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41949", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41935", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41985", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41957", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41886", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41824", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41816", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41735", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5578" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5578", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5578" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1415795", "reference_id": "1415795", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1415795" }, { "reference_url": "https://security.gentoo.org/glsa/201702-28", "reference_id": "GLSA-201702-28", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-28" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://usn.ubuntu.com/3268-1/", "reference_id": "USN-3268-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3268-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-5578" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kvww-v5vg-qbdt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83087?format=api", "vulnerability_id": "VCID-kwra-y7vr-ykdg", "summary": "Qemu: Integer overflow in ccid_card_vscard_read() allows memory corruption", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18438.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18438.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18438", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25514", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.2575", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25822", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25865", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25634", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25706", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25753", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25763", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25723", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25665", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25667", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.2565", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25625", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25572", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25564", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-18438" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18438", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18438" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1609015", "reference_id": "1609015", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1609015" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911470", "reference_id": "911470", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911470" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-18438" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kwra-y7vr-ykdg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/48520?format=api", "vulnerability_id": "VCID-mgn9-kzp9-wke5", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could lead to the execution of arbitrary code on the host system.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5552.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5552.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5552", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41884", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41948", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41976", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41902", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41952", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41963", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41987", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41949", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41935", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41985", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41957", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41886", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41824", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41816", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00198", "scoring_system": "epss", "scoring_elements": "0.41735", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5552" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5552", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5552" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.3", "scoring_system": "cvssv2", "scoring_elements": "AV:A/AC:M/Au:S/C:N/I:N/A:P" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1415281", "reference_id": "1415281", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1415281" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=852119", "reference_id": "852119", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=852119" }, { "reference_url": "https://security.gentoo.org/glsa/201702-28", "reference_id": "GLSA-201702-28", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201702-28" }, { "reference_url": "https://usn.ubuntu.com/3261-1/", "reference_id": "USN-3261-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3261-1/" }, { "reference_url": "https://usn.ubuntu.com/3268-1/", "reference_id": "USN-3268-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3268-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-5552" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mgn9-kzp9-wke5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73636?format=api", "vulnerability_id": "VCID-mzsa-tcqf-effc", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-02/msg00073.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-02/msg00073.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-03/msg00042.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00072.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00072.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00001.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00001.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00007.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6778.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6778.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22685", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22548", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22721", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22559", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2255", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22861", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22905", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22697", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22773", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22825", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22847", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.2281", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22753", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22767", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22762", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-01/msg03132.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-01/msg03132.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/01/24/5", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/01/24/5" }, { "reference_url": "http://www.securityfocus.com/bid/106758", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/106758" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1664205", "reference_id": "1664205", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1664205" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921525", "reference_id": "921525", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=921525" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.0.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6778", "reference_id": "CVE-2019-6778", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:P/A:P" }, { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6778" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1883", "reference_id": "RHSA-2019:1883", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1883" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1968", "reference_id": "RHSA-2019:1968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-6778" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mzsa-tcqf-effc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50150?format=api", "vulnerability_id": "VCID-ncpf-ttuc-fqe7", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9060.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9060.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9060", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25654", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25425", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25481", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25473", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25724", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25766", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25535", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25608", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25655", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25666", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25625", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25568", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25572", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25558", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.2553", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9060" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9060", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9060" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452597", "reference_id": "1452597", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452597" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9060" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ncpf-ttuc-fqe7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63886?format=api", "vulnerability_id": "VCID-p1bu-wmxq-27dm", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14167.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-14167.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.224", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22661", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22604", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22619", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22616", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22568", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22413", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22403", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35658", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35682", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35691", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35504", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35705", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35731", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0015", "scoring_system": "epss", "scoring_elements": "0.35612", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.6", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:N/I:P/A:P" }, { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.nongnu.org/archive/html/qemu-devel/2017-09/msg01032.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.nongnu.org/archive/html/qemu-devel/2017-09/msg01032.html" }, { "reference_url": "http://www.debian.org/security/2017/dsa-3991", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.debian.org/security/2017/dsa-3991" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/09/07/2", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/09/07/2" }, { "reference_url": "http://www.securityfocus.com/bid/100694", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/100694" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1489375", "reference_id": "1489375", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1489375" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=874606", "reference_id": "874606", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=874606" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14167", "reference_id": "CVE-2017-14167", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:C/I:C/A:C" }, { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3368", "reference_id": "RHSA-2017:3368", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3368" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3369", "reference_id": "RHSA-2017:3369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3466", "reference_id": "RHSA-2017:3466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3470", "reference_id": "RHSA-2017:3470", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3471", "reference_id": "RHSA-2017:3471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3472", "reference_id": "RHSA-2017:3472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3473", "reference_id": "RHSA-2017:3473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3474", "reference_id": "RHSA-2017:3474", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3474" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-14167" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p1bu-wmxq-27dm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63885?format=api", "vulnerability_id": "VCID-q49g-ggaf-cqbt", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13711.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13711.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01754", "scoring_system": "epss", "scoring_elements": "0.82656", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01754", "scoring_system": "epss", "scoring_elements": "0.82615", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01754", "scoring_system": "epss", "scoring_elements": "0.82619", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01754", "scoring_system": "epss", "scoring_elements": "0.8264", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01754", "scoring_system": "epss", "scoring_elements": "0.8265", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86436", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86455", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86465", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86479", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86478", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86472", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86488", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86407", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86418", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.02957", "scoring_system": "epss", "scoring_elements": "0.86437", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:N/I:N/A:P" }, { "value": "4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486400", "reference_id": "1486400", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1486400" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873875", "reference_id": "873875", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-13711" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-q49g-ggaf-cqbt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90990?format=api", "vulnerability_id": "VCID-qnpg-992x-5kcn", "summary": "security update", "references": [], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "DSA-4566-1 qemu" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qnpg-992x-5kcn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/43771?format=api", "vulnerability_id": "VCID-rdgu-3kat-j7c6", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9824.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-9824.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28427", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28501", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28544", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28339", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28405", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28447", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2845", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28408", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.2835", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28361", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28293", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28198", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28086", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28007", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-9824" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1678515", "reference_id": "1678515", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1678515" }, { "reference_url": "https://security.gentoo.org/glsa/201904-25", "reference_id": "GLSA-201904-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201904-25" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1650", "reference_id": "RHSA-2019:1650", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1650" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2078", "reference_id": "RHSA-2019:2078", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2078" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3345", "reference_id": "RHSA-2019:3345", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3345" }, { "reference_url": "https://usn.ubuntu.com/3978-1/", "reference_id": "USN-3978-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3978-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-9824" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rdgu-3kat-j7c6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56777?format=api", "vulnerability_id": "VCID-rkxf-jp2j-mqgf", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15124.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15124.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82133", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.8228", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.8224", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82242", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82264", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82276", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82146", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82168", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82164", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.8219", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82198", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82217", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82209", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01684", "scoring_system": "epss", "scoring_elements": "0.82204", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:N/I:N/A:C" }, { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.securityfocus.com/bid/102295", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/102295" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525195", "reference_id": "1525195", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1525195" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884806", "reference_id": "884806", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=884806" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15124", "reference_id": "CVE-2017-15124", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15124" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0816", "reference_id": "RHSA-2018:0816", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3062", "reference_id": "RHSA-2018:3062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3062" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15124" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rkxf-jp2j-mqgf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/76578?format=api", "vulnerability_id": "VCID-ruzy-eqc8-5ubs", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14378.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14378.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.9111", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91116", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91124", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91131", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91144", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.9115", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91158", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91159", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91183", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91184", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91187", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91199", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91198", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.06584", "scoring_system": "epss", "scoring_elements": "0.91195", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-14378" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-13164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14378" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745", "reference_id": "1734745", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734745" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933741", "reference_id": "933741", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933741" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933742", "reference_id": "933742", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=933742" }, { "reference_url": "https://github.com/vishnudevtj/exploits/blob/bdbe2647969150c63ee3b34da5a2deb056e64f0b/qemu/CVE-2019-14378/exp.c", "reference_id": "CVE-2019-14378", "reference_type": "exploit", "scores": [], "url": "https://github.com/vishnudevtj/exploits/blob/bdbe2647969150c63ee3b34da5a2deb056e64f0b/qemu/CVE-2019-14378/exp.c" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/47320.c", "reference_id": "CVE-2019-14378", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/47320.c" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3179", "reference_id": "RHSA-2019:3179", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3403", "reference_id": "RHSA-2019:3403", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3403" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3494", "reference_id": "RHSA-2019:3494", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3494" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3742", "reference_id": "RHSA-2019:3742", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3787", "reference_id": "RHSA-2019:3787", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3787" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:3968", "reference_id": "RHSA-2019:3968", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:3968" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:4344", "reference_id": "RHSA-2019:4344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:4344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0366", "reference_id": "RHSA-2020:0366", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0366" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0775", "reference_id": "RHSA-2020:0775", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0775" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:0889", "reference_id": "RHSA-2020:0889", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:0889" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:1216", "reference_id": "RHSA-2020:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:1216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2065", "reference_id": "RHSA-2020:2065", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2065" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2126", "reference_id": "RHSA-2020:2126", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2126" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2342", "reference_id": "RHSA-2020:2342", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2342" }, { "reference_url": "https://usn.ubuntu.com/4191-1/", "reference_id": "USN-4191-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-1/" }, { "reference_url": "https://usn.ubuntu.com/4191-2/", "reference_id": "USN-4191-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4191-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2019-14378" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ruzy-eqc8-5ubs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56781?format=api", "vulnerability_id": "VCID-rxsw-t1ut-rkau", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18043.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-18043.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32815", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32946", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32981", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32804", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32852", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32881", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32882", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32844", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32818", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.3286", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32837", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32801", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32651", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32536", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32452", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1536377", "reference_id": "1536377", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1536377" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-18043" ], "risk_score": 1.2, "exploitability": "0.5", "weighted_severity": "2.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rxsw-t1ut-rkau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73616?format=api", "vulnerability_id": "VCID-tsyt-eq3x-5ucy", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12617.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-12617.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93389", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93417", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93405", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93406", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93413", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93422", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93423", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93442", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93447", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.10988", "scoring_system": "epss", "scoring_elements": "0.93397", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.11739", "scoring_system": "epss", "scoring_elements": "0.93728", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.11739", "scoring_system": "epss", "scoring_elements": "0.93722", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.11739", "scoring_system": "epss", "scoring_elements": "0.93726", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.11739", "scoring_system": "epss", "scoring_elements": "0.93724", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.2", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gist.github.com/fakhrizulkifli/c7740d28efa07dafee66d4da5d857ef6", "reference_id": "", "reference_type": "", "scores": [], "url": "https://gist.github.com/fakhrizulkifli/c7740d28efa07dafee66d4da5d857ef6" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00041.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/02/msg00041.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-06/msg03385.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-06/msg03385.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "https://www.exploit-db.com/exploits/44925/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.exploit-db.com/exploits/44925/" }, { "reference_url": "http://www.securityfocus.com/bid/104531", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/104531" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1594054", "reference_id": "1594054", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1594054" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902725", "reference_id": "902725", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=902725" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/44925.txt", "reference_id": "CVE-2018-12617", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/44925.txt" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12617", "reference_id": "CVE-2018-12617", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12617" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-12617" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tsyt-eq3x-5ucy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82028?format=api", "vulnerability_id": "VCID-uj5n-mck2-2uen", "summary": "QEMU: privilege escalation via disas_insn function in TCG mode", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8284.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8284.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8284", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29064", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28667", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28971", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28851", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28738", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29138", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29188", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.28997", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29062", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29104", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.2911", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29065", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29014", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.2904", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00108", "scoring_system": "epss", "scoring_elements": "0.29017", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-8284" }, { "reference_url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1122", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugs.chromium.org/p/project-zero/issues/detail?id=1122" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8284", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8284" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/qemu/qemu/commit/30663fd26c0307e414622c7a8607fbc04f92ec14", "reference_id": "", "reference_type": "", "scores": [], "url": "https://github.com/qemu/qemu/commit/30663fd26c0307e414622c7a8607fbc04f92ec14" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1769670", "reference_id": "1769670", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1769670" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-8284", "reference_id": "CVE-2017-8284", "reference_type": "", "scores": [ { "value": "6.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:C/I:C/A:C" }, { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-8284" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-8284" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uj5n-mck2-2uen" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/56783?format=api", "vulnerability_id": "VCID-uryz-5yk9-9fd7", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow an attacker to execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7550.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-7550.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24463", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24581", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24617", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24395", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24507", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24523", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24479", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24421", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24437", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24429", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24404", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24289", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24275", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00084", "scoring_system": "epss", "scoring_elements": "0.24235", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-7550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1549798", "reference_id": "1549798", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1549798" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892041", "reference_id": "892041", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=892041" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1369", "reference_id": "RHSA-2018:1369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1643", "reference_id": "RHSA-2018:1643", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1643" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1644", "reference_id": "RHSA-2018:1644", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1644" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1645", "reference_id": "RHSA-2018:1645", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1645" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1646", "reference_id": "RHSA-2018:1646", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1646" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2462", "reference_id": "RHSA-2018:2462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2462" }, { "reference_url": "https://usn.ubuntu.com/3649-1/", "reference_id": "USN-3649-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3649-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-7550" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uryz-5yk9-9fd7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63620?format=api", "vulnerability_id": "VCID-v4eq-3kfm-uug9", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9373.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9373.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27706", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27309", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27491", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27385", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27744", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27782", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27575", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27643", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27685", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.2769", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27647", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27589", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27597", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27533", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458270", "reference_id": "1458270", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458270" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864216", "reference_id": "864216", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9373" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v4eq-3kfm-uug9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4140?format=api", "vulnerability_id": "VCID-v8fp-rzfq-e3bs", "summary": "Information leak via side effects of speculative execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5715.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5715.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.88597", "scoring_system": "epss", "scoring_elements": "0.995", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.88597", "scoring_system": "epss", "scoring_elements": "0.99501", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.89042", "scoring_system": "epss", "scoring_elements": "0.99534", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.99534", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.99533", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.9953", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.89094", "scoring_system": "epss", "scoring_elements": "0.99529", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.89147", "scoring_system": "epss", "scoring_elements": "0.99538", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99542", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99533", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99534", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.89198", "scoring_system": "epss", "scoring_elements": "0.99539", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9016", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9016" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0861", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0861" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13166", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13166" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13220", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13220" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16526", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16526" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16912", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16912" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16913", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16913" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16914", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16914" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17975", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17975" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18017", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18017" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18193", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18193" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18203", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18203" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18216", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18216" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18218", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18218" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18222", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18222" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18224", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18224" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18232", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18232" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18241", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18241" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18257", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18257" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5753", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5753" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000004", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000004" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000199", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000199" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10471", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10471" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10472", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10472" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1065", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1065" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1066", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1066" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1068", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1068" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10981", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10981" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10982", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10982" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5332", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5332" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5333", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5333" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5750", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5750" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5803", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5803" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6927", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6927" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7480", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7480" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7492", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7492" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7566", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7566" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7740", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7740" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7757", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7757" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7995", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7995" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8087", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8087" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8781", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8781" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8822", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8822" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8897", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8897" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:N/C:C/I:N/A:N" }, { "value": "7.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "http://www.securityfocus.com/bid/102376", "reference_id": "102376", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.securityfocus.com/bid/102376" }, { "reference_url": "http://www.securitytracker.com/id/1040071", "reference_id": "1040071", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.securitytracker.com/id/1040071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519780", "reference_id": "1519780", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1519780" }, { "reference_url": "https://www.kb.cert.org/vuls/id/180049", "reference_id": "180049", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.kb.cert.org/vuls/id/180049" }, { "reference_url": "https://seclists.org/bugtraq/2019/Jun/36", "reference_id": "36", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://seclists.org/bugtraq/2019/Jun/36" }, { "reference_url": "https://www.exploit-db.com/exploits/43427/", "reference_id": "43427", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.exploit-db.com/exploits/43427/" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4609", "reference_id": "4609", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4609" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4611", "reference_id": "4611", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4611" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4613", "reference_id": "4613", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4613" }, { "reference_url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4614", "reference_id": "4614", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://nvidia.custhelp.com/app/answers/detail/a_id/4614" }, { "reference_url": "http://www.kb.cert.org/vuls/id/584653", "reference_id": "584653", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.kb.cert.org/vuls/id/584653" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886532", "reference_id": "886532", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886532" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886852", "reference_id": "886852", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=886852" }, { "reference_url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002", "reference_id": "ADV180002", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180002" }, { "reference_url": "http://xenbits.xen.org/xsa/advisory-254.html", "reference_id": "advisory-254.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://xenbits.xen.org/xsa/advisory-254.html" }, { "reference_url": "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr", "reference_id": "advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00088&languageid=en-fr" }, { "reference_url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-001.txt", "reference_id": "ARUBA-PSA-2018-001.txt", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-001.txt" }, { "reference_url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt", "reference_id": "ARUBA-PSA-2019-003.txt", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2019-003.txt" }, { "reference_url": "https://security.archlinux.org/ASA-201801-10", "reference_id": "ASA-201801-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201801-10" }, { "reference_url": "https://security.archlinux.org/AVG-557", "reference_id": "AVG-557", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-557" }, { "reference_url": "https://security.archlinux.org/AVG-558", "reference_id": "AVG-558", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-558" }, { "reference_url": "https://security.archlinux.org/AVG-559", "reference_id": "AVG-559", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-559" }, { "reference_url": "https://security.archlinux.org/AVG-582", "reference_id": "AVG-582", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-582" }, { "reference_url": "https://security.archlinux.org/AVG-583", "reference_id": "AVG-583", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-583" }, { "reference_url": "https://security.archlinux.org/AVG-987", "reference_id": "AVG-987", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-987" }, { "reference_url": "https://aws.amazon.com/de/security/security-bulletins/AWS-2018-013/", "reference_id": "AWS-2018-013", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://aws.amazon.com/de/security/security-bulletins/AWS-2018-013/" }, { "reference_url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel", "reference_id": "cisco-sa-20180104-cpusidechannel", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180104-cpusidechannel" }, { "reference_url": "https://support.citrix.com/article/CTX231399", "reference_id": "CTX231399", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.citrix.com/article/CTX231399" }, { "reference_url": "https://security.paloaltonetworks.com/CVE-2017-5715", "reference_id": "CVE-2017-5715", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.paloaltonetworks.com/CVE-2017-5715" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/43427.c", "reference_id": "CVE-2017-5753;CVE-2017-5715", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/43427.c" }, { "reference_url": "https://spectreattack.com/spectre.pdf", "reference_id": "CVE-2017-5753;CVE-2017-5715", "reference_type": "exploit", "scores": [], "url": "https://spectreattack.com/spectre.pdf" }, { "reference_url": "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03805en_us", "reference_id": "display?docId=emr_na-hpesbhf03805en_us", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03805en_us" }, { "reference_url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03871en_us", "reference_id": "display?docLocale=en_US&docId=emr_na-hpesbhf03871en_us", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03871en_us" }, { "reference_url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-18:03.speculative_execution.asc", "reference_id": "FreeBSD-SA-18:03.speculative_execution.asc", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-18:03.speculative_execution.asc" }, { "reference_url": "https://security.gentoo.org/glsa/201804-08", "reference_id": "GLSA-201804-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201804-08" }, { "reference_url": "https://security.gentoo.org/glsa/201810-06", "reference_id": "GLSA-201810-06", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.gentoo.org/glsa/201810-06" }, { "reference_url": "https://support.f5.com/csp/article/K91229003", "reference_id": "K91229003", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.f5.com/csp/article/K91229003" }, { "reference_url": "https://support.lenovo.com/us/en/solutions/LEN-18282", "reference_id": "LEN-18282", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://support.lenovo.com/us/en/solutions/LEN-18282" }, { "reference_url": "https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0001", "reference_id": "mitel-product-security-advisory-18-0001", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.mitel.com/en-ca/support/security-advisories/mitel-product-security-advisory-18-0001" }, { "reference_url": "https://blog.mozilla.org/security/2018/01/03/mitigations-landing-new-class-timing-attack/", "reference_id": "mitigations-landing-new-class-timing-attack", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://blog.mozilla.org/security/2018/01/03/mitigations-landing-new-class-timing-attack/" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00002.html", "reference_id": "msg00002.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00002.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00003.html", "reference_id": "msg00003.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00003.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00004.html", "reference_id": "msg00004.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00004.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00005.html", "reference_id": "msg00005.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00005.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00009.html", "reference_id": "msg00009.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00009.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00012.html", "reference_id": "msg00012.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00012.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00013.html", "reference_id": "msg00013.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2018-01/msg00013.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html", "reference_id": "msg00017.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00017.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00019.html", "reference_id": "msg00019.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00019.html" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00025.html", "reference_id": "msg00025.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2020/03/msg00025.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20180104-0001/", "reference_id": "ntap-20180104-0001", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20180104-0001/" }, { "reference_url": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html", "reference_id": "reading-privileged-memory-with-side.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://googleprojectzero.blogspot.com/2018/01/reading-privileged-memory-with-side.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0016", "reference_id": "RHSA-2018:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0017", "reference_id": "RHSA-2018:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0018", "reference_id": "RHSA-2018:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0020", "reference_id": "RHSA-2018:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0021", "reference_id": "RHSA-2018:0021", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0021" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0022", "reference_id": "RHSA-2018:0022", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0022" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0023", "reference_id": "RHSA-2018:0023", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0023" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0027", "reference_id": "RHSA-2018:0027", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0027" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0028", "reference_id": "RHSA-2018:0028", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0028" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0292", "reference_id": "RHSA-2018:0292", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2018:0292" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1062", "reference_id": "RHSA-2018:1062", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1062" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1129", "reference_id": "RHSA-2018:1129", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1129" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1130", "reference_id": "RHSA-2018:1130", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1130" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1196", "reference_id": "RHSA-2018:1196", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1196" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1216", "reference_id": "RHSA-2018:1216", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1216" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1252", "reference_id": "RHSA-2018:1252", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1252" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1319", "reference_id": "RHSA-2018:1319", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1319" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1346", "reference_id": "RHSA-2018:1346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1967", "reference_id": "RHSA-2018:1967", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1967" }, { "reference_url": "https://spectreattack.com/", "reference_id": "spectreattack.com", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://spectreattack.com/" }, { "reference_url": "http://packetstormsecurity.com/files/145645/Spectre-Information-Disclosure-Proof-Of-Concept.html", "reference_id": "Spectre-Information-Disclosure-Proof-Of-Concept.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "http://packetstormsecurity.com/files/145645/Spectre-Information-Disclosure-Proof-Of-Concept.html" }, { "reference_url": "https://access.redhat.com/security/vulnerabilities/speculativeexecution", "reference_id": "speculativeexecution", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://access.redhat.com/security/vulnerabilities/speculativeexecution" }, { "reference_url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability", "reference_id": "speculative-processor-vulnerability", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability" }, { "reference_url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf", "reference_id": "ssa-608355.pdf", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-608355.pdf" }, { "reference_url": "https://www.suse.com/c/suse-addresses-meltdown-spectre-vulnerabilities/", "reference_id": "suse-addresses-meltdown-spectre-vulnerabilities", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.suse.com/c/suse-addresses-meltdown-spectre-vulnerabilities/" }, { "reference_url": "https://www.synology.com/support/security/Synology_SA_18_01", "reference_id": "Synology_SA_18_01", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.synology.com/support/security/Synology_SA_18_01" }, { "reference_url": "https://security.googleblog.com/2018/01/todays-cpu-vulnerability-what-you-need.html", "reference_id": "todays-cpu-vulnerability-what-you-need.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://security.googleblog.com/2018/01/todays-cpu-vulnerability-what-you-need.html" }, { "reference_url": "https://usn.ubuntu.com/usn/usn-3516-1/", "reference_id": "usn-3516-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/usn/usn-3516-1/" }, { "reference_url": "https://usn.ubuntu.com/3516-1/", "reference_id": "USN-3516-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3516-1/" }, { "reference_url": "https://usn.ubuntu.com/3530-1/", "reference_id": "USN-3530-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3530-1/" }, { "reference_url": "https://usn.ubuntu.com/3531-1/", "reference_id": "USN-3531-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3531-1/" }, { "reference_url": "https://usn.ubuntu.com/3531-3/", "reference_id": "USN-3531-3", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3531-3/" }, { "reference_url": "https://usn.ubuntu.com/3540-1/", "reference_id": "USN-3540-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3540-1/" }, { "reference_url": "https://usn.ubuntu.com/3540-2/", "reference_id": "USN-3540-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3540-2/" }, { "reference_url": "https://usn.ubuntu.com/3541-1/", "reference_id": "USN-3541-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3541-1/" }, { "reference_url": "https://usn.ubuntu.com/3541-2/", "reference_id": "USN-3541-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3541-2/" }, { "reference_url": "https://usn.ubuntu.com/3542-1/", "reference_id": "USN-3542-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3542-1/" }, { "reference_url": "https://usn.ubuntu.com/3542-2/", "reference_id": "USN-3542-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3542-2/" }, { "reference_url": "https://usn.ubuntu.com/3549-1/", "reference_id": "USN-3549-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3549-1/" }, { "reference_url": "https://usn.ubuntu.com/3560-1/", "reference_id": "USN-3560-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3560-1/" }, { "reference_url": "https://usn.ubuntu.com/3561-1/", "reference_id": "USN-3561-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3561-1/" }, { "reference_url": "https://usn.ubuntu.com/3580-1/", "reference_id": "USN-3580-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3580-1/" }, { "reference_url": "https://usn.ubuntu.com/3581-1/", "reference_id": "USN-3581-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3581-1/" }, { "reference_url": "https://usn.ubuntu.com/3581-2/", "reference_id": "USN-3581-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3581-2/" }, { "reference_url": "https://usn.ubuntu.com/3582-1/", "reference_id": "USN-3582-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3582-1/" }, { "reference_url": "https://usn.ubuntu.com/3582-2/", "reference_id": "USN-3582-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3582-2/" }, { "reference_url": "https://usn.ubuntu.com/3594-1/", "reference_id": "USN-3594-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3594-1/" }, { "reference_url": "https://usn.ubuntu.com/3597-1/", "reference_id": "USN-3597-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3597-1/" }, { "reference_url": "https://usn.ubuntu.com/3597-2/", "reference_id": "USN-3597-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3597-2/" }, { "reference_url": "https://usn.ubuntu.com/3620-2/", "reference_id": "USN-3620-2", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3620-2/" }, { "reference_url": "https://usn.ubuntu.com/3690-1/", "reference_id": "USN-3690-1", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3690-1/" }, { "reference_url": "https://usn.ubuntu.com/3777-3/", "reference_id": "USN-3777-3", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://usn.ubuntu.com/3777-3/" }, { "reference_url": "https://cert.vde.com/en-us/advisories/vde-2018-002", "reference_id": "vde-2018-002", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://cert.vde.com/en-us/advisories/vde-2018-002" }, { "reference_url": "https://cert.vde.com/en-us/advisories/vde-2018-003", "reference_id": "vde-2018-003", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://cert.vde.com/en-us/advisories/vde-2018-003" }, { "reference_url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0002.html", "reference_id": "VMSA-2018-0002.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0002.html" }, { "reference_url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0004.html", "reference_id": "VMSA-2018-0004.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.vmware.com/us/security/advisories/VMSA-2018-0004.html" }, { "reference_url": "https://www.vmware.com/security/advisories/VMSA-2018-0007.html", "reference_id": "VMSA-2018-0007.html", "reference_type": "", "scores": [ { "value": "5.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-23T13:31:09Z/" } ], "url": "https://www.vmware.com/security/advisories/VMSA-2018-0007.html" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-254.html", "reference_id": "XSA-254", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-254.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-5715" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v8fp-rzfq-e3bs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50151?format=api", "vulnerability_id": "VCID-vefc-bfc3-fyg2", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9310.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9310.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26017", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26101", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.2614", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25906", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25974", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26026", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26036", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25991", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25932", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25937", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25919", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25889", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25824", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25818", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.25771", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452620", "reference_id": "1452620", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1452620" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863840", "reference_id": "863840", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863840" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9310" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vefc-bfc3-fyg2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/69425?format=api", "vulnerability_id": "VCID-vxg6-nx6s-6feu", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15289.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15289.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.0814", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08218", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.082", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08096", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08082", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08243", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.0818", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00032", "scoring_system": "epss", "scoring_elements": "0.0937", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13441", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.1349", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13404", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.1336", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13503", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00044", "scoring_system": "epss", "scoring_elements": "0.13564", "published_at": "2026-04-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15038" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15119" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15124" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15268" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15289" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-16845" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17381" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18043" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5715" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5683" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-7550" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2018/09/msg00007.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02557.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-10/msg02557.html" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4213", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2018/dsa-4213" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2017/10/12/16", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2017/10/12/16" }, { "reference_url": "http://www.securityfocus.com/bid/101262", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/101262" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501290", "reference_id": "1501290", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1501290" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880832", "reference_id": "880832", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=880832" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15289", "reference_id": "CVE-2017-15289", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "6.0", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-15289" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3368", "reference_id": "RHSA-2017:3368", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3368" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3369", "reference_id": "RHSA-2017:3369", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3369" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3466", "reference_id": "RHSA-2017:3466", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3466" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3470", "reference_id": "RHSA-2017:3470", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3470" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3471", "reference_id": "RHSA-2017:3471", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3471" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3472", "reference_id": "RHSA-2017:3472", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3472" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3473", "reference_id": "RHSA-2017:3473", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3473" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:3474", "reference_id": "RHSA-2017:3474", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:3474" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:0516", "reference_id": "RHSA-2018:0516", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:0516" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15289" ], "risk_score": 2.7, "exploitability": "0.5", "weighted_severity": "5.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vxg6-nx6s-6feu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/50152?format=api", "vulnerability_id": "VCID-w1je-asqn-fbcr", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which may allow a remote attacker to cause a Denial of Service or gain\n elevated privileges from a guest VM.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9330.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9330.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10597", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10493", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10563", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10427", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10501", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10568", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00036", "scoring_system": "epss", "scoring_elements": "0.10565", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16329", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16284", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.164", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.16438", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00053", "scoring_system": "epss", "scoring_elements": "0.1633", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.0007", "scoring_system": "epss", "scoring_elements": "0.21443", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28348", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00104", "scoring_system": "epss", "scoring_elements": "0.28337", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10664" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10911" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9310" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9330" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9373" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9374" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1457697", "reference_id": "1457697", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1457697" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863943", "reference_id": "863943", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863943" }, { "reference_url": "https://security.gentoo.org/glsa/201706-03", "reference_id": "GLSA-201706-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201706-03" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9330" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w1je-asqn-fbcr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35376?format=api", "vulnerability_id": "VCID-wdjx-9f36-abgu", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15863.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15863.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13872", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13955", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.14011", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13813", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13896", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13948", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13905", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.13869", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00045", "scoring_system": "epss", "scoring_elements": "0.1382", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31127", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31177", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31158", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.30761", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.30967", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.30845", "published_at": "2026-04-26T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1853725", "reference_id": "1853725", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1853725" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-15863" ], "risk_score": 2.4, "exploitability": "0.5", "weighted_severity": "4.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wdjx-9f36-abgu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/35381?format=api", "vulnerability_id": "VCID-wjxf-kgdw-2kau", "summary": "Multiple vulnerabilities have been discovered in QEMU, the worst of which could result in remote code execution (guest sandbox escape).", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16092.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16092.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11559", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11685", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11728", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11513", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.116", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1166", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11672", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11635", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11608", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1147", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11472", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11598", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11551", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.11512", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00039", "scoring_system": "epss", "scoring_elements": "0.1144", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-16092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860283", "reference_id": "1860283", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1860283" }, { "reference_url": "https://security.gentoo.org/glsa/202208-27", "reference_id": "GLSA-202208-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202208-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5111", "reference_id": "RHSA-2020:5111", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5111" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0346", "reference_id": "RHSA-2021:0346", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0347", "reference_id": "RHSA-2021:0347", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0459", "reference_id": "RHSA-2021:0459", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0459" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:0934", "reference_id": "RHSA-2021:0934", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:0934" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1762", "reference_id": "RHSA-2021:1762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1762" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-16092" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wjxf-kgdw-2kau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4232?format=api", "vulnerability_id": "VCID-wm9d-ymbb-sfdc", "summary": "QEMU: usb: out-of-bounds r/w access issue", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14364.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14364.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94268", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94277", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94289", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.9429", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94299", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94304", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94308", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94333", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94332", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94309", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94324", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.9433", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.13903", "scoring_system": "epss", "scoring_elements": "0.94329", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.14223", "scoring_system": "epss", "scoring_elements": "0.94409", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12829" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15863" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16092" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869201", "reference_id": "1869201", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869201" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968947", "reference_id": "968947", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968947" }, { "reference_url": "https://security.gentoo.org/glsa/202009-14", "reference_id": "GLSA-202009-14", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202009-14" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4047", "reference_id": "RHSA-2020:4047", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4047" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4048", "reference_id": "RHSA-2020:4048", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4048" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4049", "reference_id": "RHSA-2020:4049", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4049" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4050", "reference_id": "RHSA-2020:4050", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4050" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4051", "reference_id": "RHSA-2020:4051", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4052", "reference_id": "RHSA-2020:4052", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4052" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4053", "reference_id": "RHSA-2020:4053", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4053" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4054", "reference_id": "RHSA-2020:4054", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4054" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4055", "reference_id": "RHSA-2020:4055", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4056", "reference_id": "RHSA-2020:4056", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4058", "reference_id": "RHSA-2020:4058", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4058" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4059", "reference_id": "RHSA-2020:4059", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4059" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4078", "reference_id": "RHSA-2020:4078", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4078" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4079", "reference_id": "RHSA-2020:4079", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4079" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4111", "reference_id": "RHSA-2020:4111", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4111" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4115", "reference_id": "RHSA-2020:4115", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4115" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4162", "reference_id": "RHSA-2020:4162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4162" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4167", "reference_id": "RHSA-2020:4167", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4172", "reference_id": "RHSA-2020:4172", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4172" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4176", "reference_id": "RHSA-2020:4176", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4290", "reference_id": "RHSA-2020:4290", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4290" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4291", "reference_id": "RHSA-2020:4291", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4291" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" }, { "reference_url": "https://usn.ubuntu.com/4511-1/", "reference_id": "USN-4511-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4511-1/" }, { "reference_url": "https://xenbits.xen.org/xsa/advisory-335.html", "reference_id": "XSA-335", "reference_type": "", "scores": [], "url": "https://xenbits.xen.org/xsa/advisory-335.html" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-14364", "XSA-335" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wm9d-ymbb-sfdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73371?format=api", "vulnerability_id": "VCID-xzmg-gkxx-buau", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17962.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17962.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17962", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.4983", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49868", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49896", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49847", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49901", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49895", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49913", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49885", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49886", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49931", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49932", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49904", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49891", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49898", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00264", "scoring_system": "epss", "scoring_elements": "0.49852", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-17962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10839" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17962" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17963" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636773", "reference_id": "1636773", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1636773" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911468", "reference_id": "911468", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911468" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-17962" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xzmg-gkxx-buau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63883?format=api", "vulnerability_id": "VCID-y16a-n7u8-zfen", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9375.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9375.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27706", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27309", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27491", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27385", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27744", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27782", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27575", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27643", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27685", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.2769", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27647", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27589", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27597", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27572", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27533", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-9375" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.5", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:P" }, { "value": "3.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458744", "reference_id": "1458744", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1458744" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864219", "reference_id": "864219", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864219" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2392", "reference_id": "RHSA-2017:2392", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2017:2408", "reference_id": "RHSA-2017:2408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2017:2408" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-9375" ], "risk_score": 1.4, "exploitability": "0.5", "weighted_severity": "2.7", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y16a-n7u8-zfen" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/63884?format=api", "vulnerability_id": "VCID-yccx-a98b-nfh4", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12809.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12809.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.19887", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20105", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20047", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20029", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20033", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20031", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.19922", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.19918", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25502", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25509", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25454", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25513", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25577", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25614", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0009", "scoring_system": "epss", "scoring_elements": "0.25385", "published_at": "2026-04-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12809" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13672" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13711" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14167" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9375" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:C" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1483534", "reference_id": "1483534", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1483534" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873849", "reference_id": "873849", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873849" }, { "reference_url": "https://usn.ubuntu.com/3414-1/", "reference_id": "USN-3414-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3414-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-12809" ], "risk_score": 1.6, "exploitability": "0.5", "weighted_severity": "3.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yccx-a98b-nfh4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83022?format=api", "vulnerability_id": "VCID-z24v-fz53-zubg", "summary": "QEMU: nvme: Out-of-bounds r/w buffer access in cmb operations", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16847.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16847.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16847", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25671", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25741", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25782", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25551", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25624", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25681", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25641", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25584", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25585", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.2557", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25542", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25494", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25487", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25439", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16847" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16847", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16847" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644052", "reference_id": "1644052", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1644052" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912655", "reference_id": "912655", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=912655" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-16847" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z24v-fz53-zubg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/83826?format=api", "vulnerability_id": "VCID-z31k-dhbq-k3ed", "summary": "Qemu: stack buffer overflow in NBD server triggered via long export name", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15118.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15118.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15118", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.8167", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81681", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81704", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81701", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81728", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81732", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81752", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81739", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81733", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81772", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81775", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81799", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81808", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.01606", "scoring_system": "epss", "scoring_elements": "0.81813", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-15118" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15118", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15118" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1516922", "reference_id": "1516922", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1516922" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883406", "reference_id": "883406", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883406" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/43194.txt", "reference_id": "CVE-2017-15118", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/43194.txt" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg05045.html", "reference_id": "CVE-2017-15118", "reference_type": "exploit", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2017-11/msg05045.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1104", "reference_id": "RHSA-2018:1104", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1104" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:1113", "reference_id": "RHSA-2018:1113", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:1113" }, { "reference_url": "https://usn.ubuntu.com/3575-1/", "reference_id": "USN-3575-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3575-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2017-15118" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "7.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z31k-dhbq-k3ed" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73613?format=api", "vulnerability_id": "VCID-z4jn-dgcg-x7du", "summary": "security update", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11806.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11806.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.1568", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15731", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15719", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15783", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15587", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15672", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16979", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16906", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17041", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17076", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.16962", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17206", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17159", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17099", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00054", "scoring_system": "epss", "scoring_elements": "0.17036", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00010.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.debian.org/debian-lts-announce/2019/05/msg00010.html" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2018-06/msg01012.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2018-06/msg01012.html" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "https://www.zerodayinitiative.com/advisories/ZDI-18-567/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.zerodayinitiative.com/advisories/ZDI-18-567/" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2018/06/07/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2018/06/07/1" }, { "reference_url": "http://www.securityfocus.com/bid/104400", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/104400" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1586245", "reference_id": "1586245", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1586245" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=901017", "reference_id": "901017", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=901017" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:12:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:13:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:8:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openstack:9:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11806", "reference_id": "CVE-2018-11806", "reference_type": "", "scores": [ { "value": "7.2", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:C/I:C/A:C" }, { "value": "8.2", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-11806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2462", "reference_id": "RHSA-2018:2462", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2462" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2762", "reference_id": "RHSA-2018:2762", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2762" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2822", "reference_id": "RHSA-2018:2822", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2822" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:2887", "reference_id": "RHSA-2018:2887", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:2887" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2892", "reference_id": "RHSA-2019:2892", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2892" }, { "reference_url": "https://usn.ubuntu.com/3826-1/", "reference_id": "USN-3826-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3826-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2018-11806" ], "risk_score": 3.7, "exploitability": "0.5", "weighted_severity": "7.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z4jn-dgcg-x7du" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/82880?format=api", "vulnerability_id": "VCID-zfwq-v3sh-kkbp", "summary": "QEMU: scsi-generic: possible OOB access while handling inquiry request", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6501.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6501.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6501", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30839", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30445", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.3081", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30645", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30529", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30966", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.31013", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30831", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30889", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30919", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30921", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30879", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30834", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30865", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00119", "scoring_system": "epss", "scoring_elements": "0.30845", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-6501" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6501", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6501" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/" }, { "reference_url": "https://lists.gnu.org/archive/html/qemu-devel/2019-01/msg02324.html", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.gnu.org/archive/html/qemu-devel/2019-01/msg02324.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20190411-0006/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://security.netapp.com/advisory/ntap-20190411-0006/" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2019/01/24/1", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.openwall.com/lists/oss-security/2019/01/24/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668160", "reference_id": "1668160", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1668160" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920222", "reference_id": "920222", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=920222" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.1:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:3.1:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:3.1:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6501", "reference_id": "CVE-2019-6501", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:N/I:N/A:P" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-6501" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2166", "reference_id": "RHSA-2019:2166", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2166" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2425", "reference_id": "RHSA-2019:2425", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2425" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2553", "reference_id": "RHSA-2019:2553", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:2553" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-6501" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zfwq-v3sh-kkbp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73633?format=api", "vulnerability_id": "VCID-zjyq-3nyd-k3g9", "summary": "security update", "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00094.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00094.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00040.html", "reference_id": "", "reference_type": "", "scores": [], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-05/msg00040.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3812.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3812.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22199", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22028", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22243", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22196", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22055", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22041", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22357", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22401", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22187", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.2227", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22324", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22344", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22303", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22244", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00073", "scoring_system": "epss", "scoring_elements": "0.22248", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-3812" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11806" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12617" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16872" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18849" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18954" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19364" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19489" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12155" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3812" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6778" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CGCFIFSIWUREEQQOZDZFBYKWZHXCWBZN/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJMTVGDLA654HNCDGLCUEIP36SNJEKK7/" }, { "reference_url": "https://seclists.org/bugtraq/2019/May/76", "reference_id": "", "reference_type": "", "scores": [], "url": "https://seclists.org/bugtraq/2019/May/76" }, { "reference_url": "https://www.debian.org/security/2019/dsa-4454", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.debian.org/security/2019/dsa-4454" }, { "reference_url": "http://www.securityfocus.com/bid/107059", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securityfocus.com/bid/107059" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1665792", "reference_id": "1665792", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1665792" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922635", "reference_id": "922635", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=922635" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3812", "reference_id": "CVE-2019-3812", "reference_type": "", "scores": [ { "value": "2.1", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:N/C:P/I:N/A:N" }, { "value": "4.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N" }, { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-3812" }, { "reference_url": "https://usn.ubuntu.com/3923-1/", "reference_id": "USN-3923-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3923-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1036934?format=api", "purl": "pkg:deb/debian/qemu@1:2.8%2Bdfsg-6%2Bdeb9u9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1erd-fd8p-hqch" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-2ywm-rb9g-x3fr" }, { "vulnerability": "VCID-32jy-dr7t-2uas" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3qwz-gg8s-2ugm" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4276-jfy3-h3ck" }, { "vulnerability": "VCID-46n7-vgn3-nffj" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4s1w-v1qs-9uhp" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-56ng-2tm1-5qhk" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-5xgg-2mh6-gfg1" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7w8v-hby8-dya5" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ac7j-emx5-v7cn" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-atzs-876n-byg6" }, { "vulnerability": "VCID-b7v6-247j-kfcs" }, { "vulnerability": "VCID-bbmg-x8h6-67e5" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-bj4j-2yxz-pyeh" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-c834-hdmj-cfe1" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-chjc-4r36-y3f8" }, { "vulnerability": "VCID-cmqc-g49c-wbeq" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-cy79-xgar-eqgr" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-d8cd-qgg7-fyed" }, { "vulnerability": "VCID-dgzy-z4ad-ubc4" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-dthd-mp8z-8ucg" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-ecy5-s73b-n3db" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-f4w9-adpm-tuht" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fp83-zgum-ryb8" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gmvy-m5mq-yycx" }, { "vulnerability": "VCID-gntc-n53u-n3aj" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-hwt1-11ew-sqhv" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jdmp-aggh-ufhy" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-jnxy-g6wu-8ubu" }, { "vulnerability": "VCID-jq6v-ra9m-sqgz" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-km1b-1rvd-q3fa" }, { "vulnerability": "VCID-kvww-v5vg-qbdt" }, { "vulnerability": "VCID-kwra-y7vr-ykdg" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mgn9-kzp9-wke5" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-mzsa-tcqf-effc" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ncpf-ttuc-fqe7" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p1bu-wmxq-27dm" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-q49g-ggaf-cqbt" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qnpg-992x-5kcn" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-rdgu-3kat-j7c6" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-rkxf-jp2j-mqgf" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rxsw-t1ut-rkau" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tsyt-eq3x-5ucy" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-uj5n-mck2-2uen" }, { "vulnerability": "VCID-uryz-5yk9-9fd7" }, { "vulnerability": "VCID-v4eq-3kfm-uug9" }, { "vulnerability": "VCID-v8fp-rzfq-e3bs" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vefc-bfc3-fyg2" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-vxg6-nx6s-6feu" }, { "vulnerability": "VCID-w1je-asqn-fbcr" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-xzmg-gkxx-buau" }, { "vulnerability": "VCID-y16a-n7u8-zfen" }, { "vulnerability": "VCID-yccx-a98b-nfh4" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-z24v-fz53-zubg" }, { "vulnerability": "VCID-z31k-dhbq-k3ed" }, { "vulnerability": "VCID-z4jn-dgcg-x7du" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zfwq-v3sh-kkbp" }, { "vulnerability": "VCID-zjyq-3nyd-k3g9" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:2.8%252Bdfsg-6%252Bdeb9u9" }, { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" } ], "aliases": [ "CVE-2019-3812" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zjyq-3nyd-k3g9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61636?format=api", "vulnerability_id": "VCID-zk4y-2xjp-vfcs", "summary": "Multiple vulnerabilities have been found in QEMU, the worst of\n which could result in the arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13659.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "2.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-13659.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10798", "published_at": "2026-04-01T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10933", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10999", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10823", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10898", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10951", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10952", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10919", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10896", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10761", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10774", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10895", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10854", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10813", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.10752", "published_at": "2026-04-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10756" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13659" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13754" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-13765" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842496", "reference_id": "1842496", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1842496" }, { "reference_url": "https://security.gentoo.org/glsa/202011-09", "reference_id": "GLSA-202011-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202011-09" }, { "reference_url": "https://usn.ubuntu.com/4467-1/", "reference_id": "USN-4467-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-1/" }, { "reference_url": "https://usn.ubuntu.com/4467-2/", "reference_id": "USN-4467-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4467-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/1037820?format=api", "purl": "pkg:deb/debian/qemu@1:3.1%2Bdfsg-8%2Bdeb10u8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-145f-vwpy-ukfg" }, { "vulnerability": "VCID-14d3-jbv3-xbbe" }, { "vulnerability": "VCID-1g7f-6q39-fyhx" }, { "vulnerability": "VCID-28wt-9aqz-xqbg" }, { "vulnerability": "VCID-29bt-r6ya-jfhu" }, { "vulnerability": "VCID-29d8-uet3-syfh" }, { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3wee-2xay-r7bt" }, { "vulnerability": "VCID-4848-dnv8-bqez" }, { "vulnerability": "VCID-4d66-e766-q7ch" }, { "vulnerability": "VCID-4unz-8jyy-qfdc" }, { "vulnerability": "VCID-5t1d-ve8h-9ba1" }, { "vulnerability": "VCID-5ur6-6ec3-p7bt" }, { "vulnerability": "VCID-6ef4-c38a-j7ca" }, { "vulnerability": "VCID-6fs3-3a9w-xycq" }, { "vulnerability": "VCID-6hqu-ecs5-zqeb" }, { "vulnerability": "VCID-6pkj-axqp-duf1" }, { "vulnerability": "VCID-6xcc-y2jp-nufx" }, { "vulnerability": "VCID-7mhs-m1r3-n3ag" }, { "vulnerability": "VCID-7w6v-ewcn-kkdz" }, { "vulnerability": "VCID-7zkh-xs1s-guh6" }, { "vulnerability": "VCID-8cnu-b5en-7ye3" }, { "vulnerability": "VCID-8jjd-u5mc-zbde" }, { "vulnerability": "VCID-8kzh-2gr5-e7gu" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-93gr-c812-uud8" }, { "vulnerability": "VCID-955d-q41q-4uau" }, { "vulnerability": "VCID-9rpr-g2sm-yqb6" }, { "vulnerability": "VCID-ap2r-g7ew-kqed" }, { "vulnerability": "VCID-bcps-uatt-wkd7" }, { "vulnerability": "VCID-be1r-pq33-abg5" }, { "vulnerability": "VCID-br4x-bpvj-puhr" }, { "vulnerability": "VCID-burb-pa38-fqhw" }, { "vulnerability": "VCID-c4ky-b4y8-kqd5" }, { "vulnerability": "VCID-cgq2-b6my-eucg" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d6gd-j7ks-xkgk" }, { "vulnerability": "VCID-dqbd-gqg9-2kgs" }, { "vulnerability": "VCID-drqf-646q-xqf3" }, { "vulnerability": "VCID-e99n-gc79-cqcy" }, { "vulnerability": "VCID-eb18-wa2w-q7bn" }, { "vulnerability": "VCID-een8-8kc5-qfcx" }, { "vulnerability": "VCID-egyg-bbm9-8qea" }, { "vulnerability": "VCID-eqp6-raqc-dkch" }, { "vulnerability": "VCID-ewsp-7ydm-5ub3" }, { "vulnerability": "VCID-ezm8-pq4d-mkhg" }, { "vulnerability": "VCID-f2fx-sqtp-8yhe" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-ffd9-9wm1-rffs" }, { "vulnerability": "VCID-fucx-q3j9-qkat" }, { "vulnerability": "VCID-gqtx-g1cs-6ybn" }, { "vulnerability": "VCID-h22r-c3az-3fa3" }, { "vulnerability": "VCID-h5sc-3zrc-23dn" }, { "vulnerability": "VCID-hq1b-c1ew-kkga" }, { "vulnerability": "VCID-hrhp-htnd-7bbx" }, { "vulnerability": "VCID-j11x-bba3-zkdj" }, { "vulnerability": "VCID-j1gy-ttz5-1yct" }, { "vulnerability": "VCID-j6hs-wm45-s3ej" }, { "vulnerability": "VCID-jmca-kswb-1beq" }, { "vulnerability": "VCID-juek-f6et-x7eb" }, { "vulnerability": "VCID-ke54-4uc4-rkbs" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-mn7m-an9j-yucj" }, { "vulnerability": "VCID-nb4k-f7rm-kuhg" }, { "vulnerability": "VCID-ne4d-zj65-qkgx" }, { "vulnerability": "VCID-nuwe-tupt-wfhg" }, { "vulnerability": "VCID-p2we-9qfu-17eb" }, { "vulnerability": "VCID-phfy-zv23-sqcr" }, { "vulnerability": "VCID-q38v-9gvs-sydf" }, { "vulnerability": "VCID-qejd-5dkk-muhc" }, { "vulnerability": "VCID-qn73-3gkb-rkbm" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-r47h-wdgy-7bga" }, { "vulnerability": "VCID-r51r-u7mq-93cy" }, { "vulnerability": "VCID-re83-uvh8-5bgq" }, { "vulnerability": "VCID-ruzy-eqc8-5ubs" }, { "vulnerability": "VCID-rvs5-s55e-9ueb" }, { "vulnerability": "VCID-rz5x-q1ne-53he" }, { "vulnerability": "VCID-sy57-hngf-d3gn" }, { "vulnerability": "VCID-t2y3-nbz8-jqa7" }, { "vulnerability": "VCID-t44w-g1ys-47e6" }, { "vulnerability": "VCID-t6cq-kfkw-wbch" }, { "vulnerability": "VCID-takm-jn93-eqgb" }, { "vulnerability": "VCID-tk7k-71bb-97hh" }, { "vulnerability": "VCID-tyv8-tzu8-23fj" }, { "vulnerability": "VCID-u1wj-9rfp-wyea" }, { "vulnerability": "VCID-vbq6-qtub-ffbg" }, { "vulnerability": "VCID-vpp8-a7sw-pqef" }, { "vulnerability": "VCID-vpu8-k8me-tfe6" }, { "vulnerability": "VCID-vrwy-exwv-vyhr" }, { "vulnerability": "VCID-vvaj-skpn-u3ar" }, { "vulnerability": "VCID-wdjx-9f36-abgu" }, { "vulnerability": "VCID-wg5b-8smu-b3fm" }, { "vulnerability": "VCID-wjxf-kgdw-2kau" }, { "vulnerability": "VCID-wm9d-ymbb-sfdc" }, { "vulnerability": "VCID-wyr6-c2nv-p3a2" }, { "vulnerability": "VCID-x8ue-gf65-uket" }, { "vulnerability": "VCID-ycrs-vy13-wbff" }, { "vulnerability": "VCID-yt3z-g3w7-xfa5" }, { "vulnerability": "VCID-zf4c-x45c-tudm" }, { "vulnerability": "VCID-zk4y-2xjp-vfcs" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }, { "url": "http://public2.vulnerablecode.io/api/packages/994909?format=api", "purl": "pkg:deb/debian/qemu@1:5.2%2Bdfsg-11%2Bdeb11u3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ew5-8dfe-u3d8" }, { "vulnerability": "VCID-3kyg-9mf3-kfft" }, { "vulnerability": "VCID-46gg-8h8g-2kf5" }, { "vulnerability": "VCID-4mt9-kf9m-2fbz" }, { "vulnerability": "VCID-6qnt-yaa3-p3bb" }, { "vulnerability": "VCID-91y7-ceje-jbd3" }, { "vulnerability": "VCID-cenj-mz55-jbg6" }, { "vulnerability": "VCID-cnyg-wvxr-gqg3" }, { "vulnerability": "VCID-d2ve-dnmj-4bbz" }, { "vulnerability": "VCID-ej5p-r4az-6ud2" }, { "vulnerability": "VCID-ewb7-nrtu-g7ex" }, { "vulnerability": "VCID-f4sq-73vu-sfdq" }, { "vulnerability": "VCID-gc6n-kgsc-f3b6" }, { "vulnerability": "VCID-kx81-eex4-hug8" }, { "vulnerability": "VCID-m47q-17n6-t7gg" }, { "vulnerability": "VCID-mtj9-1cns-yybw" }, { "vulnerability": "VCID-n71j-fz74-kyhf" }, { "vulnerability": "VCID-p2dz-mtns-5bb4" }, { "vulnerability": "VCID-ptty-88p4-ybe9" }, { "vulnerability": "VCID-pxjg-chmx-nkdc" }, { "vulnerability": "VCID-qh2s-apkz-sbaz" }, { "vulnerability": "VCID-qs61-1esc-c3cz" }, { "vulnerability": "VCID-t58m-9jqp-43c9" }, { "vulnerability": "VCID-t5gq-4bhn-gkej" }, { "vulnerability": "VCID-uzxc-npak-yyc4" }, { "vulnerability": "VCID-w7gc-1eh2-3ufu" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:5.2%252Bdfsg-11%252Bdeb11u3" } ], "aliases": [ "CVE-2020-13659" ], "risk_score": 1.3, "exploitability": "0.5", "weighted_severity": "2.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zk4y-2xjp-vfcs" } ], "risk_score": "10.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/qemu@1:3.1%252Bdfsg-8%252Bdeb10u8" }