Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/pypy3@7.0.0%2Bdfsg-3

Type deb

Namespace debian

Name pypy3

Version 7.0.0+dfsg-3

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url VCID-29cz-9gkc-1bfx

vulnerability_id VCID-29cz-9gkc-1bfx

summary A denial of service via regular expression in the py.path.svnwc component of py (aka python-py) through 1.9.0 could be used by attackers to cause a compute-time denial of service attack by supplying malicious input to the blame functionality.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29651.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-29651.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-29651

reference_id

reference_type

scores

value	0.00781
scoring_system	epss
scoring_elements	0.73771
published_at	2026-04-24T12:55:00Z

value	0.00781
scoring_system	epss
scoring_elements	0.73747
published_at	2026-04-18T12:55:00Z

value	0.00781
scoring_system	epss
scoring_elements	0.73738
published_at	2026-04-21T12:55:00Z

value	0.00781
scoring_system	epss
scoring_elements	0.73695
published_at	2026-04-13T12:55:00Z

value	0.00781
scoring_system	epss
scoring_elements	0.73647
published_at	2026-04-01T12:55:00Z

value	0.00781
scoring_system	epss
scoring_elements	0.73704
published_at	2026-04-12T12:55:00Z

value	0.00781
scoring_system	epss
scoring_elements	0.73722
published_at	2026-04-11T12:55:00Z

value	0.00781
scoring_system	epss
scoring_elements	0.73701
published_at	2026-04-09T12:55:00Z

value	0.00781
scoring_system	epss
scoring_elements	0.73688
published_at	2026-04-08T12:55:00Z

value	0.00781
scoring_system	epss
scoring_elements	0.73653
published_at	2026-04-07T12:55:00Z

value	0.00781
scoring_system	epss
scoring_elements	0.7368
published_at	2026-04-04T12:55:00Z

value	0.00781
scoring_system	epss
scoring_elements	0.73656
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-29651

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29651
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-29651

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/advisories/GHSA-hj5v-574p-mj7c

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-hj5v-574p-mj7c

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/py/PYSEC-2020-92.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/py/PYSEC-2020-92.yaml

reference_url

https://github.com/pytest-dev/py

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pytest-dev/py

reference_url

https://github.com/pytest-dev/py/issues/256

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pytest-dev/py/issues/256

reference_url

https://github.com/pytest-dev/py/pull/257

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pytest-dev/py/pull/257

reference_url

https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pytest-dev/py/pull/257/commits/4a9017dc6199d2a564b6e4b0aa39d6d8870e4144

reference_url

https://lists.debian.org/debian-lts-announce/2024/11/msg00024.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2024/11/msg00024.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AYWNYEV3FGDHPIHX4DDUDMFZ6NLCQRC4/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CHDTINIBJZ67T3W74QTBIY5LPKAXEOGR/

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2020-29651

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2020-29651

reference_url

https://www.oracle.com/security-alerts/cpujul2022.html

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.oracle.com/security-alerts/cpujul2022.html

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1906451
reference_id	1906451
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1906451

reference_url

https://security.archlinux.org/AVG-1338

reference_id

AVG-1338

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1338

reference_url	https://usn.ubuntu.com/5138-1/
reference_id	USN-5138-1
reference_type
scores
url	https://usn.ubuntu.com/5138-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2020-29651, GHSA-hj5v-574p-mj7c, PYSEC-2020-92

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-29cz-9gkc-1bfx

url VCID-2czu-wy37-qugf

vulnerability_id VCID-2czu-wy37-qugf

summary python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48566.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48566.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-48566

reference_id

reference_type

scores

value	0.00098
scoring_system	epss
scoring_elements	0.2714
published_at	2026-04-02T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.26883
published_at	2026-04-24T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.2704
published_at	2026-04-12T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.26984
published_at	2026-04-13T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.26992
published_at	2026-04-16T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.26967
published_at	2026-04-18T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.26931
published_at	2026-04-21T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.27176
published_at	2026-04-04T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.26968
published_at	2026-04-07T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.27036
published_at	2026-04-08T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.27081
published_at	2026-04-09T12:55:00Z

value	0.00098
scoring_system	epss
scoring_elements	0.27085
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-48566

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48566
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48566

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2238753
reference_id	2238753
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2238753

reference_url

https://bugs.python.org/issue40791

reference_id

issue40791

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:08:27Z/

url

https://bugs.python.org/issue40791

reference_url

https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html

reference_id

msg00017.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:08:27Z/

url

https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html

reference_url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_id

msg00022.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:08:27Z/

url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_url

https://security.netapp.com/advisory/ntap-20231006-0013/

reference_id

ntap-20231006-0013

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:08:27Z/

url

https://security.netapp.com/advisory/ntap-20231006-0013/

reference_url	https://usn.ubuntu.com/6400-1/
reference_id	USN-6400-1
reference_type
scores
url	https://usn.ubuntu.com/6400-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/7180-1/
reference_id	USN-7180-1
reference_type
scores
url	https://usn.ubuntu.com/7180-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29cz-9gkc-1bfx

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4gsg-5e6s-63g4

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-7ka5-7jrn-dber

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8hug-fhhb-sbgt

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-a8mv-mr3q-vygz

vulnerability	VCID-bqp2-x383-xqfh

vulnerability	VCID-dexx-3ssz-nqfg

vulnerability	VCID-e6rs-jwvu-jycd

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-h7z2-vc14-nfhq

vulnerability	VCID-js5p-py72-2kga

vulnerability	VCID-qqh6-evfk-1fgy

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-tbuw-2msj-tqd9

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2

aliases CVE-2022-48566

risk_score 2.6

exploitability 0.5

weighted_severity 5.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2czu-wy37-qugf

url VCID-2j3t-a3r6-vfg7

vulnerability_id VCID-2j3t-a3r6-vfg7

summary

Multiple vulnerabilities have been found in Python, the worst of
    which might allow attackers to access sensitive information.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3426.json

reference_id

reference_type

scores

value	5.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3426.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-3426

reference_id

reference_type

scores

value	0.0008
scoring_system	epss
scoring_elements	0.23679
published_at	2026-04-02T12:55:00Z

value	0.0008
scoring_system	epss
scoring_elements	0.23519
published_at	2026-04-01T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.2394
published_at	2026-04-09T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23721
published_at	2026-04-24T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.2384
published_at	2026-04-21T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.2387
published_at	2026-04-16T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23859
published_at	2026-04-18T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23827
published_at	2026-04-07T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23894
published_at	2026-04-08T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23913
published_at	2026-04-12T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23957
published_at	2026-04-11T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.24042
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-3426

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3426
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3426

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=1935913

reference_id

1935913

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=1935913

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/25HVHLBGO2KNPXJ3G426QEYSSCECJDU5/

reference_id

25HVHLBGO2KNPXJ3G426QEYSSCECJDU5

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/25HVHLBGO2KNPXJ3G426QEYSSCECJDU5/

reference_url

https://security.archlinux.org/AVG-1675

reference_id

AVG-1675

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1675

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BF2K7HEWADHN6P52R3QLIOX27U3DJ4HI/

reference_id

BF2K7HEWADHN6P52R3QLIOX27U3DJ4HI

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BF2K7HEWADHN6P52R3QLIOX27U3DJ4HI/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DQYPUKLLBOZMKFPO7RD7CENTXHUUEUV7/

reference_id

DQYPUKLLBOZMKFPO7RD7CENTXHUUEUV7

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DQYPUKLLBOZMKFPO7RD7CENTXHUUEUV7/

reference_url

https://security.gentoo.org/glsa/202104-04

reference_id

GLSA-202104-04

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/

url

https://security.gentoo.org/glsa/202104-04

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LM5V4VPLBHBEASSAROYPSHXGXGGPHNOE/

reference_id

LM5V4VPLBHBEASSAROYPSHXGXGGPHNOE

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LM5V4VPLBHBEASSAROYPSHXGXGGPHNOE/

reference_url

https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html

reference_id

msg00005.html

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/

url

https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html

reference_url

https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html

reference_id

msg00039.html

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/

url

https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/

reference_id

N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/

reference_url

https://security.netapp.com/advisory/ntap-20210629-0003/

reference_id

ntap-20210629-0003

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/

url

https://security.netapp.com/advisory/ntap-20210629-0003/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QNGAFMPIYIVJ47FCF2NK2PIX22HUG35B/

reference_id

QNGAFMPIYIVJ47FCF2NK2PIX22HUG35B

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QNGAFMPIYIVJ47FCF2NK2PIX22HUG35B/

reference_url	https://access.redhat.com/errata/RHSA-2021:4160
reference_id	RHSA-2021:4160
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4160

reference_url	https://access.redhat.com/errata/RHSA-2021:4162
reference_id	RHSA-2021:4162
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4162

reference_url	https://access.redhat.com/errata/RHSA-2021:4399
reference_id	RHSA-2021:4399
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4399

reference_url	https://usn.ubuntu.com/5342-1/
reference_id	USN-5342-1
reference_type
scores
url	https://usn.ubuntu.com/5342-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/USN-5342-3/
reference_id	USN-USN-5342-3
reference_type
scores
url	https://usn.ubuntu.com/USN-5342-3/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VPX7Y5GQDNB4FJTREWONGC4ZSVH7TGHF/

reference_id

VPX7Y5GQDNB4FJTREWONGC4ZSVH7TGHF

reference_type

scores

value	5.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-18T11:45:51Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VPX7Y5GQDNB4FJTREWONGC4ZSVH7TGHF/

fixed_packages

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29cz-9gkc-1bfx

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4gsg-5e6s-63g4

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-7ka5-7jrn-dber

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8hug-fhhb-sbgt

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-a8mv-mr3q-vygz

vulnerability	VCID-bqp2-x383-xqfh

vulnerability	VCID-dexx-3ssz-nqfg

vulnerability	VCID-e6rs-jwvu-jycd

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-h7z2-vc14-nfhq

vulnerability	VCID-js5p-py72-2kga

vulnerability	VCID-qqh6-evfk-1fgy

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-tbuw-2msj-tqd9

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2

aliases CVE-2021-3426

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2j3t-a3r6-vfg7

url VCID-2shb-2cvn-dyd2

vulnerability_id VCID-2shb-2cvn-dyd2

summary Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24329.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24329.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-24329

reference_id

reference_type

scores

value	0.01081
scoring_system	epss
scoring_elements	0.77911
published_at	2026-04-24T12:55:00Z

value	0.01081
scoring_system	epss
scoring_elements	0.77879
published_at	2026-04-21T12:55:00Z

value	0.01445
scoring_system	epss
scoring_elements	0.8075
published_at	2026-04-12T12:55:00Z

value	0.01445
scoring_system	epss
scoring_elements	0.8078
published_at	2026-04-18T12:55:00Z

value	0.01445
scoring_system	epss
scoring_elements	0.80778
published_at	2026-04-16T12:55:00Z

value	0.01445
scoring_system	epss
scoring_elements	0.80742
published_at	2026-04-13T12:55:00Z

value	0.0159
scoring_system	epss
scoring_elements	0.816
published_at	2026-04-07T12:55:00Z

value	0.0159
scoring_system	epss
scoring_elements	0.81627
published_at	2026-04-08T12:55:00Z

value	0.0159
scoring_system	epss
scoring_elements	0.81602
published_at	2026-04-04T12:55:00Z

value	0.0159
scoring_system	epss
scoring_elements	0.81581
published_at	2026-04-02T12:55:00Z

value	0.0159
scoring_system	epss
scoring_elements	0.81653
published_at	2026-04-11T12:55:00Z

value	0.0159
scoring_system	epss
scoring_elements	0.81633
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-24329

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24329
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24329

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/102153

reference_id

102153

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://github.com/python/cpython/issues/102153

reference_url

https://www.kb.cert.org/vuls/id/127587

reference_id

127587

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://www.kb.cert.org/vuls/id/127587

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2173917
reference_id	2173917
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2173917

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6PEVICI7YNGGMSL3UCMWGE66QFLATH72/

reference_id

6PEVICI7YNGGMSL3UCMWGE66QFLATH72

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6PEVICI7YNGGMSL3UCMWGE66QFLATH72/

reference_url

https://github.com/python/cpython/pull/99421

reference_id

99421

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://github.com/python/cpython/pull/99421

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO/

reference_id

DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G/

reference_id

EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG/

reference_id

F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG/

reference_url	https://security.gentoo.org/glsa/202405-01
reference_id	GLSA-202405-01
reference_type
scores
url	https://security.gentoo.org/glsa/202405-01

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN/

reference_id

GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7/

reference_id

H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA/

reference_id

JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T/

reference_id

LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T/

reference_url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_id

msg00022.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP/

reference_id

MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP/

reference_url

https://security.netapp.com/advisory/ntap-20230324-0004/

reference_id

ntap-20230324-0004

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://security.netapp.com/advisory/ntap-20230324-0004/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR/

reference_id

O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR/

reference_id

OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI/

reference_id

PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44/

reference_id

PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44/

reference_url

https://pointernull.com/security/python-url-parse-problem.html

reference_id

python-url-parse-problem.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://pointernull.com/security/python-url-parse-problem.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL/

reference_id

Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4/

reference_id

QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RA2MBEEES6L46OD64OBSVUUMGKNGMOWW/

reference_id

RA2MBEEES6L46OD64OBSVUUMGKNGMOWW

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RA2MBEEES6L46OD64OBSVUUMGKNGMOWW/

reference_url	https://access.redhat.com/errata/RHSA-2023:3550
reference_id	RHSA-2023:3550
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3550

reference_url	https://access.redhat.com/errata/RHSA-2023:3555
reference_id	RHSA-2023:3555
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3555

reference_url	https://access.redhat.com/errata/RHSA-2023:3556
reference_id	RHSA-2023:3556
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3556

reference_url	https://access.redhat.com/errata/RHSA-2023:3585
reference_id	RHSA-2023:3585
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3585

reference_url	https://access.redhat.com/errata/RHSA-2023:3591
reference_id	RHSA-2023:3591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3591

reference_url	https://access.redhat.com/errata/RHSA-2023:3594
reference_id	RHSA-2023:3594
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3594

reference_url	https://access.redhat.com/errata/RHSA-2023:3595
reference_id	RHSA-2023:3595
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3595

reference_url	https://access.redhat.com/errata/RHSA-2023:3776
reference_id	RHSA-2023:3776
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3776

reference_url	https://access.redhat.com/errata/RHSA-2023:3777
reference_id	RHSA-2023:3777
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3777

reference_url	https://access.redhat.com/errata/RHSA-2023:3780
reference_id	RHSA-2023:3780
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3780

reference_url	https://access.redhat.com/errata/RHSA-2023:3781
reference_id	RHSA-2023:3781
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3781

reference_url	https://access.redhat.com/errata/RHSA-2023:3796
reference_id	RHSA-2023:3796
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3796

reference_url	https://access.redhat.com/errata/RHSA-2023:3810
reference_id	RHSA-2023:3810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3810

reference_url	https://access.redhat.com/errata/RHSA-2023:3811
reference_id	RHSA-2023:3811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3811

reference_url	https://access.redhat.com/errata/RHSA-2023:3931
reference_id	RHSA-2023:3931
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3931

reference_url	https://access.redhat.com/errata/RHSA-2023:3932
reference_id	RHSA-2023:3932
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3932

reference_url	https://access.redhat.com/errata/RHSA-2023:3934
reference_id	RHSA-2023:3934
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3934

reference_url	https://access.redhat.com/errata/RHSA-2023:3935
reference_id	RHSA-2023:3935
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3935

reference_url	https://access.redhat.com/errata/RHSA-2023:3936
reference_id	RHSA-2023:3936
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3936

reference_url	https://access.redhat.com/errata/RHSA-2023:4004
reference_id	RHSA-2023:4004
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4004

reference_url	https://access.redhat.com/errata/RHSA-2023:4008
reference_id	RHSA-2023:4008
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4008

reference_url	https://access.redhat.com/errata/RHSA-2023:4032
reference_id	RHSA-2023:4032
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4032

reference_url	https://access.redhat.com/errata/RHSA-2023:4038
reference_id	RHSA-2023:4038
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4038

reference_url	https://access.redhat.com/errata/RHSA-2023:4203
reference_id	RHSA-2023:4203
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4203

reference_url	https://access.redhat.com/errata/RHSA-2023:4282
reference_id	RHSA-2023:4282
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4282

reference_url	https://access.redhat.com/errata/RHSA-2023:6793
reference_id	RHSA-2023:6793
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6793

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ/

reference_id

T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG/

reference_id

TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP/

reference_id

U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC/

reference_id

UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC/

reference_url	https://usn.ubuntu.com/5888-1/
reference_id	USN-5888-1
reference_type
scores
url	https://usn.ubuntu.com/5888-1/

reference_url	https://usn.ubuntu.com/5960-1/
reference_id	USN-5960-1
reference_type
scores
url	https://usn.ubuntu.com/5960-1/

reference_url	https://usn.ubuntu.com/6139-1/
reference_id	USN-6139-1
reference_type
scores
url	https://usn.ubuntu.com/6139-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/7180-1/
reference_id	USN-7180-1
reference_type
scores
url	https://usn.ubuntu.com/7180-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU/

reference_id

WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2023-24329

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2shb-2cvn-dyd2

url VCID-4gsg-5e6s-63g4

vulnerability_id VCID-4gsg-5e6s-63g4

summary Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-28861.json

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-28861.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28861

reference_id

reference_type

scores

value	0.01395
scoring_system	epss
scoring_elements	0.80333
published_at	2026-04-01T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.8034
published_at	2026-04-02T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.8036
published_at	2026-04-04T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80392
published_at	2026-04-12T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80407
published_at	2026-04-11T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80388
published_at	2026-04-09T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80378
published_at	2026-04-08T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80349
published_at	2026-04-07T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80445
published_at	2026-04-24T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80419
published_at	2026-04-21T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80415
published_at	2026-04-18T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80414
published_at	2026-04-16T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80385
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28861

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2120642
reference_id	2120642
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2120642

reference_url

https://github.com/python/cpython/pull/24848

reference_id

24848

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://github.com/python/cpython/pull/24848

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/

reference_id

2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/

reference_id

5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/

reference_id

5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/

reference_url

https://github.com/python/cpython/pull/93879

reference_id

93879

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://github.com/python/cpython/pull/93879

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/

reference_id

DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/

reference_id

HPX4XHT2FGVQYLY2STT2MRVENILNZTTU

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/

reference_id

I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/

reference_id

IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/

reference_url

https://bugs.python.org/issue43223

reference_id

issue43223

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://bugs.python.org/issue43223

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/

reference_id

KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/

reference_id

OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/

reference_id

QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/

reference_url	https://access.redhat.com/errata/RHSA-2022:6766
reference_id	RHSA-2022:6766
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6766

reference_url	https://access.redhat.com/errata/RHSA-2022:8353
reference_id	RHSA-2022:8353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8353

reference_url	https://access.redhat.com/errata/RHSA-2023:0833
reference_id	RHSA-2023:0833
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0833

reference_url	https://access.redhat.com/errata/RHSA-2023:2763
reference_id	RHSA-2023:2763
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2763

reference_url	https://access.redhat.com/errata/RHSA-2023:2764
reference_id	RHSA-2023:2764
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2764

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/

reference_id

S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/

reference_id

TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/

reference_url	https://usn.ubuntu.com/5629-1/
reference_id	USN-5629-1
reference_type
scores
url	https://usn.ubuntu.com/5629-1/

reference_url	https://usn.ubuntu.com/5888-1/
reference_id	USN-5888-1
reference_type
scores
url	https://usn.ubuntu.com/5888-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/

reference_id

WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/

reference_id

X46T4EFTIBXZRYTGASBDEZGYJINH2OWV

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2021-28861

risk_score 3.4

exploitability 0.5

weighted_severity 6.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4gsg-5e6s-63g4

url VCID-4q79-666d-rygx

vulnerability_id VCID-4q79-666d-rygx

summary python: XML External Entity in XML processing plistlib module

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48565.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48565.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-48565

reference_id

reference_type

scores

value	0.07274
scoring_system	epss
scoring_elements	0.91625
published_at	2026-04-02T12:55:00Z

value	0.07274
scoring_system	epss
scoring_elements	0.9168
published_at	2026-04-24T12:55:00Z

value	0.07274
scoring_system	epss
scoring_elements	0.91651
published_at	2026-04-08T12:55:00Z

value	0.07274
scoring_system	epss
scoring_elements	0.91657
published_at	2026-04-09T12:55:00Z

value	0.07274
scoring_system	epss
scoring_elements	0.91661
published_at	2026-04-11T12:55:00Z

value	0.07274
scoring_system	epss
scoring_elements	0.91663
published_at	2026-04-12T12:55:00Z

value	0.07274
scoring_system	epss
scoring_elements	0.9166
published_at	2026-04-13T12:55:00Z

value	0.07274
scoring_system	epss
scoring_elements	0.91681
published_at	2026-04-16T12:55:00Z

value	0.07274
scoring_system	epss
scoring_elements	0.91673
published_at	2026-04-18T12:55:00Z

value	0.07274
scoring_system	epss
scoring_elements	0.91674
published_at	2026-04-21T12:55:00Z

value	0.07274
scoring_system	epss
scoring_elements	0.91631
published_at	2026-04-04T12:55:00Z

value	0.07274
scoring_system	epss
scoring_elements	0.91639
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-48565

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48565
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48565

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2240059
reference_id	2240059
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2240059

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AFHYAGWBFBNUGWU6XWKBHTCV5NH77MB7/

reference_id

AFHYAGWBFBNUGWU6XWKBHTCV5NH77MB7

reference_type

scores

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AFHYAGWBFBNUGWU6XWKBHTCV5NH77MB7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BAYWJD576JUKLHCWKDLMJSUGTRDKPF3M/

reference_id

BAYWJD576JUKLHCWKDLMJSUGTRDKPF3M

reference_type

scores

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BAYWJD576JUKLHCWKDLMJSUGTRDKPF3M/

reference_url

https://bugs.python.org/issue42051

reference_id

issue42051

reference_type

scores

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/

url

https://bugs.python.org/issue42051

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KZRZRJHWLZ7MOJNPQBWGJVXMVYDC5BRA/

reference_id

KZRZRJHWLZ7MOJNPQBWGJVXMVYDC5BRA

reference_type

scores

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KZRZRJHWLZ7MOJNPQBWGJVXMVYDC5BRA/

reference_url

https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html

reference_id

msg00017.html

reference_type

scores

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/

url

https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html

reference_url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_id

msg00022.html

reference_type

scores

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/

url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_url

https://security.netapp.com/advisory/ntap-20231006-0007/

reference_id

ntap-20231006-0007

reference_type

scores

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-10-03T17:41:12Z/

url

https://security.netapp.com/advisory/ntap-20231006-0007/

reference_url	https://access.redhat.com/errata/RHSA-2024:2987
reference_id	RHSA-2024:2987
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2987

reference_url	https://usn.ubuntu.com/6354-1/
reference_id	USN-6354-1
reference_type
scores
url	https://usn.ubuntu.com/6354-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/7180-1/
reference_id	USN-7180-1
reference_type
scores
url	https://usn.ubuntu.com/7180-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29cz-9gkc-1bfx

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4gsg-5e6s-63g4

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-7ka5-7jrn-dber

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8hug-fhhb-sbgt

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-a8mv-mr3q-vygz

vulnerability	VCID-bqp2-x383-xqfh

vulnerability	VCID-dexx-3ssz-nqfg

vulnerability	VCID-e6rs-jwvu-jycd

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-h7z2-vc14-nfhq

vulnerability	VCID-js5p-py72-2kga

vulnerability	VCID-qqh6-evfk-1fgy

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-tbuw-2msj-tqd9

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2

aliases CVE-2022-48565

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4q79-666d-rygx

url VCID-4z89-3tfk-pyge

vulnerability_id VCID-4z89-3tfk-pyge

summary Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40217.json

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40217.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-40217

reference_id

reference_type

scores

value	0.00581
scoring_system	epss
scoring_elements	0.68991
published_at	2026-04-24T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68929
published_at	2026-04-09T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68952
published_at	2026-04-11T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68938
published_at	2026-04-12T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68909
published_at	2026-04-13T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.6895
published_at	2026-04-16T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.6896
published_at	2026-04-18T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.6894
published_at	2026-04-21T12:55:00Z

value	0.00597
scoring_system	epss
scoring_elements	0.69321
published_at	2026-04-07T12:55:00Z

value	0.00597
scoring_system	epss
scoring_elements	0.69371
published_at	2026-04-08T12:55:00Z

value	0.00597
scoring_system	epss
scoring_elements	0.69324
published_at	2026-04-02T12:55:00Z

value	0.00597
scoring_system	epss
scoring_elements	0.69341
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-40217

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40217
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40217

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2235789
reference_id	2235789
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2235789

reference_url	https://security.gentoo.org/glsa/202405-01
reference_id	GLSA-202405-01
reference_type
scores
url	https://security.gentoo.org/glsa/202405-01

reference_url

https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html

reference_id

msg00017.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/

url

https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html

reference_url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_id

msg00022.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/

url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_url

https://security.netapp.com/advisory/ntap-20231006-0014/

reference_id

ntap-20231006-0014

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/

url

https://security.netapp.com/advisory/ntap-20231006-0014/

reference_url

https://mail.python.org/archives/list/security-announce%40python.org/thread/PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY/

reference_id

PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/

url

https://mail.python.org/archives/list/security-announce%40python.org/thread/PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY/

reference_url	https://access.redhat.com/errata/RHSA-2023:5456
reference_id	RHSA-2023:5456
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5456

reference_url	https://access.redhat.com/errata/RHSA-2023:5462
reference_id	RHSA-2023:5462
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5462

reference_url	https://access.redhat.com/errata/RHSA-2023:5463
reference_id	RHSA-2023:5463
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5463

reference_url	https://access.redhat.com/errata/RHSA-2023:5472
reference_id	RHSA-2023:5472
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5472

reference_url	https://access.redhat.com/errata/RHSA-2023:5528
reference_id	RHSA-2023:5528
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5528

reference_url	https://access.redhat.com/errata/RHSA-2023:5531
reference_id	RHSA-2023:5531
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5531

reference_url	https://access.redhat.com/errata/RHSA-2023:5990
reference_id	RHSA-2023:5990
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5990

reference_url	https://access.redhat.com/errata/RHSA-2023:5991
reference_id	RHSA-2023:5991
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5991

reference_url	https://access.redhat.com/errata/RHSA-2023:5992
reference_id	RHSA-2023:5992
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5992

reference_url	https://access.redhat.com/errata/RHSA-2023:5993
reference_id	RHSA-2023:5993
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5993

reference_url	https://access.redhat.com/errata/RHSA-2023:5994
reference_id	RHSA-2023:5994
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5994

reference_url	https://access.redhat.com/errata/RHSA-2023:5995
reference_id	RHSA-2023:5995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5995

reference_url	https://access.redhat.com/errata/RHSA-2023:5996
reference_id	RHSA-2023:5996
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5996

reference_url	https://access.redhat.com/errata/RHSA-2023:5997
reference_id	RHSA-2023:5997
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5997

reference_url	https://access.redhat.com/errata/RHSA-2023:5998
reference_id	RHSA-2023:5998
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5998

reference_url	https://access.redhat.com/errata/RHSA-2023:6068
reference_id	RHSA-2023:6068
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6068

reference_url	https://access.redhat.com/errata/RHSA-2023:6069
reference_id	RHSA-2023:6069
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6069

reference_url	https://access.redhat.com/errata/RHSA-2023:6290
reference_id	RHSA-2023:6290
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6290

reference_url	https://access.redhat.com/errata/RHSA-2023:6793
reference_id	RHSA-2023:6793
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6793

reference_url	https://access.redhat.com/errata/RHSA-2023:6823
reference_id	RHSA-2023:6823
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6823

reference_url	https://access.redhat.com/errata/RHSA-2023:6885
reference_id	RHSA-2023:6885
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6885

reference_url

https://www.python.org/dev/security/

reference_id

security

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/

url

https://www.python.org/dev/security/

reference_url	https://usn.ubuntu.com/6513-1/
reference_id	USN-6513-1
reference_type
scores
url	https://usn.ubuntu.com/6513-1/

reference_url	https://usn.ubuntu.com/6513-2/
reference_id	USN-6513-2
reference_type
scores
url	https://usn.ubuntu.com/6513-2/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/7180-1/
reference_id	USN-7180-1
reference_type
scores
url	https://usn.ubuntu.com/7180-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2023-40217

risk_score 3.9

exploitability 0.5

weighted_severity 7.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4z89-3tfk-pyge

url VCID-7ka5-7jrn-dber

vulnerability_id VCID-7ka5-7jrn-dber

summary Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6597.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6597.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-6597

reference_id

reference_type

scores

value	0.00077
scoring_system	epss
scoring_elements	0.23141
published_at	2026-04-02T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22828
published_at	2026-04-24T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23185
published_at	2026-04-04T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22974
published_at	2026-04-07T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23048
published_at	2026-04-08T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23101
published_at	2026-04-09T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23121
published_at	2026-04-11T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23083
published_at	2026-04-12T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23028
published_at	2026-04-13T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23041
published_at	2026-04-16T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23033
published_at	2026-04-18T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22994
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-6597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6597
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6597

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/commit/02a9259c717738dfe6b463c44d7e17f2b6d2cb3a

reference_id

02a9259c717738dfe6b463c44d7e17f2b6d2cb3a

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/commit/02a9259c717738dfe6b463c44d7e17f2b6d2cb3a

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070135
reference_id	1070135
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070135

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2276518
reference_id	2276518
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2276518

reference_url

http://www.openwall.com/lists/oss-security/2024/03/20/5

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

http://www.openwall.com/lists/oss-security/2024/03/20/5

reference_url

https://github.com/python/cpython/commit/5585334d772b253a01a6730e8202ffb1607c3d25

reference_id

5585334d772b253a01a6730e8202ffb1607c3d25

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/commit/5585334d772b253a01a6730e8202ffb1607c3d25

reference_url

https://github.com/python/cpython/commit/6ceb8aeda504b079fef7a57b8d81472f15cdd9a5

reference_id

6ceb8aeda504b079fef7a57b8d81472f15cdd9a5

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/commit/6ceb8aeda504b079fef7a57b8d81472f15cdd9a5

reference_url

https://github.com/python/cpython/commit/81c16cd94ec38d61aa478b9a452436dc3b1b524d

reference_id

81c16cd94ec38d61aa478b9a452436dc3b1b524d

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/commit/81c16cd94ec38d61aa478b9a452436dc3b1b524d

reference_url

https://github.com/python/cpython/commit/8eaeefe49d179ca4908d052745e3bb8b6f238f82

reference_id

8eaeefe49d179ca4908d052745e3bb8b6f238f82

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/commit/8eaeefe49d179ca4908d052745e3bb8b6f238f82

reference_url

https://github.com/python/cpython/issues/91133

reference_id

91133

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/issues/91133

reference_url

https://github.com/python/cpython/commit/d54e22a669ae6e987199bb5d2c69bb5a46b0083b

reference_id

d54e22a669ae6e987199bb5d2c69bb5a46b0083b

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/commit/d54e22a669ae6e987199bb5d2c69bb5a46b0083b

reference_url	https://security.gentoo.org/glsa/202405-01
reference_id	GLSA-202405-01
reference_type
scores
url	https://security.gentoo.org/glsa/202405-01

reference_url

https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html

reference_id

msg00025.html

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/

reference_id

Q5C6ATFC67K53XFV4KE45325S7NS62LD

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/

reference_url	https://access.redhat.com/errata/RHSA-2024:3347
reference_id	RHSA-2024:3347
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3347

reference_url	https://access.redhat.com/errata/RHSA-2024:3391
reference_id	RHSA-2024:3391
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3391

reference_url	https://access.redhat.com/errata/RHSA-2024:3466
reference_id	RHSA-2024:3466
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3466

reference_url	https://access.redhat.com/errata/RHSA-2024:4058
reference_id	RHSA-2024:4058
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4058

reference_url	https://access.redhat.com/errata/RHSA-2024:4077
reference_id	RHSA-2024:4077
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4077

reference_url	https://access.redhat.com/errata/RHSA-2024:4078
reference_id	RHSA-2024:4078
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4078

reference_url	https://access.redhat.com/errata/RHSA-2024:4166
reference_id	RHSA-2024:4166
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4166

reference_url	https://access.redhat.com/errata/RHSA-2024:4370
reference_id	RHSA-2024:4370
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4370

reference_url	https://access.redhat.com/errata/RHSA-2024:4406
reference_id	RHSA-2024:4406
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4406

reference_url	https://access.redhat.com/errata/RHSA-2024:4456
reference_id	RHSA-2024:4456
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4456

reference_url	https://access.redhat.com/errata/RHSA-2024:4896
reference_id	RHSA-2024:4896
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4896

reference_url	https://access.redhat.com/errata/RHSA-2024:5535
reference_id	RHSA-2024:5535
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:5535

reference_url	https://access.redhat.com/errata/RHSA-2024:5689
reference_id	RHSA-2024:5689
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:5689

reference_url	https://access.redhat.com/errata/RHSA-2025:0364
reference_id	RHSA-2025:0364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0364

reference_url	https://access.redhat.com/errata/RHSA-2025:0646
reference_id	RHSA-2025:0646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0646

reference_url	https://access.redhat.com/errata/RHSA-2025:0650
reference_id	RHSA-2025:0650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0650

reference_url	https://access.redhat.com/errata/RHSA-2025:0832
reference_id	RHSA-2025:0832
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0832

reference_url	https://access.redhat.com/errata/RHSA-2025:1116
reference_id	RHSA-2025:1116
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1116

reference_url	https://access.redhat.com/errata/RHSA-2025:1120
reference_id	RHSA-2025:1120
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1120

reference_url	https://access.redhat.com/errata/RHSA-2025:2705
reference_id	RHSA-2025:2705
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2705

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/

reference_id

T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/

reference_id

U5VHWS52HGD743C47UMCSAK2A773M2YE

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2023-6597

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7ka5-7jrn-dber

url VCID-7nj2-94zp-d3bp

vulnerability_id VCID-7nj2-94zp-d3bp

summary python: DoS when processing malformed Apple Property List files in binary format

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48564.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-48564.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-48564

reference_id

reference_type

scores

value	0.00099
scoring_system	epss
scoring_elements	0.27213
published_at	2026-04-02T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.2725
published_at	2026-04-04T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27044
published_at	2026-04-07T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27113
published_at	2026-04-08T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27159
published_at	2026-04-09T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27165
published_at	2026-04-11T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27121
published_at	2026-04-12T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27064
published_at	2026-04-13T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27072
published_at	2026-04-16T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27046
published_at	2026-04-18T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.27008
published_at	2026-04-21T12:55:00Z

value	0.00099
scoring_system	epss
scoring_elements	0.26962
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-48564

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48564
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-48564

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2249750
reference_id	2249750
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2249750

reference_url	https://access.redhat.com/errata/RHSA-2024:0114
reference_id	RHSA-2024:0114
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0114

reference_url	https://access.redhat.com/errata/RHSA-2024:0430
reference_id	RHSA-2024:0430
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0430

reference_url	https://access.redhat.com/errata/RHSA-2024:0586
reference_id	RHSA-2024:0586
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0586

reference_url	https://usn.ubuntu.com/6513-1/
reference_id	USN-6513-1
reference_type
scores
url	https://usn.ubuntu.com/6513-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29cz-9gkc-1bfx

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4gsg-5e6s-63g4

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-7ka5-7jrn-dber

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8hug-fhhb-sbgt

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-a8mv-mr3q-vygz

vulnerability	VCID-bqp2-x383-xqfh

vulnerability	VCID-dexx-3ssz-nqfg

vulnerability	VCID-e6rs-jwvu-jycd

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-h7z2-vc14-nfhq

vulnerability	VCID-js5p-py72-2kga

vulnerability	VCID-qqh6-evfk-1fgy

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-tbuw-2msj-tqd9

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2

aliases CVE-2022-48564

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7nj2-94zp-d3bp

url VCID-7s7y-9bw5-m3ep

vulnerability_id VCID-7s7y-9bw5-m3ep

summary Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6232.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6232.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-6232

reference_id

reference_type

scores

value	0.03036
scoring_system	epss
scoring_elements	0.86697
published_at	2026-04-24T12:55:00Z

value	0.03175
scoring_system	epss
scoring_elements	0.86927
published_at	2026-04-04T12:55:00Z

value	0.03175
scoring_system	epss
scoring_elements	0.86908
published_at	2026-04-02T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.8848
published_at	2026-04-18T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88483
published_at	2026-04-16T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88478
published_at	2026-04-21T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88442
published_at	2026-04-07T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88461
published_at	2026-04-08T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88467
published_at	2026-04-09T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88477
published_at	2026-04-11T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.8847
published_at	2026-04-12T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88469
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-6232

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6232
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6232

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/121285

reference_id

121285

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/issues/121285

reference_url

https://github.com/python/cpython/pull/121286

reference_id

121286

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/pull/121286

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2309426
reference_id	2309426
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2309426

reference_url

https://github.com/python/cpython/commit/34ddb64d088dd7ccc321f6103d23153256caa5d4

reference_id

34ddb64d088dd7ccc321f6103d23153256caa5d4

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/34ddb64d088dd7ccc321f6103d23153256caa5d4

reference_url

https://github.com/python/cpython/commit/4eaf4891c12589e3c7bdad5f5b076e4c8392dd06

reference_id

4eaf4891c12589e3c7bdad5f5b076e4c8392dd06

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/4eaf4891c12589e3c7bdad5f5b076e4c8392dd06

reference_url

https://github.com/python/cpython/commit/743acbe872485dc18df4d8ab2dc7895187f062c4

reference_id

743acbe872485dc18df4d8ab2dc7895187f062c4

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/743acbe872485dc18df4d8ab2dc7895187f062c4

reference_url

https://github.com/python/cpython/commit/7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d

reference_id

7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d

reference_url

https://github.com/python/cpython/commit/b4225ca91547aa97ed3aca391614afbb255bc877

reference_id

b4225ca91547aa97ed3aca391614afbb255bc877

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/b4225ca91547aa97ed3aca391614afbb255bc877

reference_url

https://github.com/python/cpython/commit/d449caf8a179e3b954268b3a88eb9170be3c8fbf

reference_id

d449caf8a179e3b954268b3a88eb9170be3c8fbf

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/d449caf8a179e3b954268b3a88eb9170be3c8fbf

reference_url

https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373

reference_id

ed3a49ea734ada357ff4442996fd4ae71d253373

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373

reference_url	https://security.gentoo.org/glsa/202506-07
reference_id	GLSA-202506-07
reference_type
scores
url	https://security.gentoo.org/glsa/202506-07

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY/

reference_id

JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY/

reference_url	https://access.redhat.com/errata/RHSA-2024:6909
reference_id	RHSA-2024:6909
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6909

reference_url	https://access.redhat.com/errata/RHSA-2024:6975
reference_id	RHSA-2024:6975
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6975

reference_url	https://access.redhat.com/errata/RHSA-2024:7415
reference_id	RHSA-2024:7415
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7415

reference_url	https://access.redhat.com/errata/RHSA-2024:7647
reference_id	RHSA-2024:7647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7647

reference_url	https://access.redhat.com/errata/RHSA-2024:8130
reference_id	RHSA-2024:8130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8130

reference_url	https://access.redhat.com/errata/RHSA-2024:8359
reference_id	RHSA-2024:8359
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8359

reference_url	https://access.redhat.com/errata/RHSA-2024:8374
reference_id	RHSA-2024:8374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8374

reference_url	https://access.redhat.com/errata/RHSA-2024:8446
reference_id	RHSA-2024:8446
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8446

reference_url	https://access.redhat.com/errata/RHSA-2024:8447
reference_id	RHSA-2024:8447
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8447

reference_url	https://access.redhat.com/errata/RHSA-2024:8490
reference_id	RHSA-2024:8490
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8490

reference_url	https://access.redhat.com/errata/RHSA-2024:8504
reference_id	RHSA-2024:8504
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8504

reference_url	https://access.redhat.com/errata/RHSA-2024:8797
reference_id	RHSA-2024:8797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8797

reference_url	https://access.redhat.com/errata/RHSA-2024:8836
reference_id	RHSA-2024:8836
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8836

reference_url	https://access.redhat.com/errata/RHSA-2024:8838
reference_id	RHSA-2024:8838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8838

reference_url	https://access.redhat.com/errata/RHSA-2024:8977
reference_id	RHSA-2024:8977
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8977

reference_url	https://access.redhat.com/errata/RHSA-2024:9450
reference_id	RHSA-2024:9450
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9450

reference_url	https://access.redhat.com/errata/RHSA-2024:9451
reference_id	RHSA-2024:9451
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9451

reference_url	https://access.redhat.com/errata/RHSA-2024:9468
reference_id	RHSA-2024:9468
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9468

reference_url	https://access.redhat.com/errata/RHSA-2025:1750
reference_id	RHSA-2025:1750
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1750

reference_url	https://usn.ubuntu.com/7015-1/
reference_id	USN-7015-1
reference_type
scores
url	https://usn.ubuntu.com/7015-1/

reference_url	https://usn.ubuntu.com/7015-2/
reference_id	USN-7015-2
reference_type
scores
url	https://usn.ubuntu.com/7015-2/

reference_url	https://usn.ubuntu.com/7015-5/
reference_id	USN-7015-5
reference_type
scores
url	https://usn.ubuntu.com/7015-5/

reference_url	https://usn.ubuntu.com/7488-1/
reference_id	USN-7488-1
reference_type
scores
url	https://usn.ubuntu.com/7488-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

url pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2

purl pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2

aliases CVE-2024-6232

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7s7y-9bw5-m3ep

url VCID-8a7h-5rn5-gubx

vulnerability_id VCID-8a7h-5rn5-gubx

summary A vulnerability has been discovered in GNAT Ada Suite which can lead to remote code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27619.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27619.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-27619

reference_id

reference_type

scores

value	0.0063
scoring_system	epss
scoring_elements	0.70359
published_at	2026-04-24T12:55:00Z

value	0.0063
scoring_system	epss
scoring_elements	0.70325
published_at	2026-04-18T12:55:00Z

value	0.0063
scoring_system	epss
scoring_elements	0.70306
published_at	2026-04-21T12:55:00Z

value	0.0063
scoring_system	epss
scoring_elements	0.70224
published_at	2026-04-02T12:55:00Z

value	0.0063
scoring_system	epss
scoring_elements	0.7024
published_at	2026-04-04T12:55:00Z

value	0.0063
scoring_system	epss
scoring_elements	0.70217
published_at	2026-04-07T12:55:00Z

value	0.0063
scoring_system	epss
scoring_elements	0.70264
published_at	2026-04-08T12:55:00Z

value	0.0063
scoring_system	epss
scoring_elements	0.70279
published_at	2026-04-09T12:55:00Z

value	0.0063
scoring_system	epss
scoring_elements	0.70302
published_at	2026-04-11T12:55:00Z

value	0.0063
scoring_system	epss
scoring_elements	0.70288
published_at	2026-04-12T12:55:00Z

value	0.0063
scoring_system	epss
scoring_elements	0.70275
published_at	2026-04-13T12:55:00Z

value	0.0063
scoring_system	epss
scoring_elements	0.70316
published_at	2026-04-16T12:55:00Z

value	0.00686
scoring_system	epss
scoring_elements	0.7165
published_at	2026-04-01T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-27619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27619

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1889886
reference_id	1889886
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1889886

reference_url	https://security.gentoo.org/glsa/202402-04
reference_id	GLSA-202402-04
reference_type
scores
url	https://security.gentoo.org/glsa/202402-04

reference_url	https://security.gentoo.org/glsa/202409-12
reference_id	GLSA-202409-12
reference_type
scores
url	https://security.gentoo.org/glsa/202409-12

reference_url	https://access.redhat.com/errata/RHSA-2021:1633
reference_id	RHSA-2021:1633
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1633

reference_url	https://access.redhat.com/errata/RHSA-2021:3252
reference_id	RHSA-2021:3252
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:3252

reference_url	https://access.redhat.com/errata/RHSA-2021:4151
reference_id	RHSA-2021:4151
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4151

reference_url	https://access.redhat.com/errata/RHSA-2021:4162
reference_id	RHSA-2021:4162
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4162

reference_url	https://usn.ubuntu.com/4754-1/
reference_id	USN-4754-1
reference_type
scores
url	https://usn.ubuntu.com/4754-1/

reference_url	https://usn.ubuntu.com/4754-3/
reference_id	USN-4754-3
reference_type
scores
url	https://usn.ubuntu.com/4754-3/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29cz-9gkc-1bfx

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4gsg-5e6s-63g4

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-7ka5-7jrn-dber

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8hug-fhhb-sbgt

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-a8mv-mr3q-vygz

vulnerability	VCID-bqp2-x383-xqfh

vulnerability	VCID-dexx-3ssz-nqfg

vulnerability	VCID-e6rs-jwvu-jycd

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-h7z2-vc14-nfhq

vulnerability	VCID-js5p-py72-2kga

vulnerability	VCID-qqh6-evfk-1fgy

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-tbuw-2msj-tqd9

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2

aliases CVE-2020-27619

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8a7h-5rn5-gubx

url VCID-9nvp-aus1-9yed

vulnerability_id VCID-9nvp-aus1-9yed

summary Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6923.json

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6923.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-6923

reference_id

reference_type

scores

value	0.00238
scoring_system	epss
scoring_elements	0.46858
published_at	2026-04-24T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.4685
published_at	2026-04-02T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46868
published_at	2026-04-04T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.4687
published_at	2026-04-09T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46893
published_at	2026-04-11T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46866
published_at	2026-04-12T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46873
published_at	2026-04-13T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46929
published_at	2026-04-16T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46924
published_at	2026-04-18T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46874
published_at	2026-04-21T12:55:00Z

value	0.00322
scoring_system	epss
scoring_elements	0.55276
published_at	2026-04-07T12:55:00Z

value	0.00322
scoring_system	epss
scoring_elements	0.55326
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-6923

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6923
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6923

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/commit/06f28dc236708f72871c64d4bc4b4ea144c50147

reference_id

06f28dc236708f72871c64d4bc4b4ea144c50147

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/06f28dc236708f72871c64d4bc4b4ea144c50147

reference_url

https://github.com/python/cpython/commit/097633981879b3c9de9a1dd120d3aa585ecc2384

reference_id

097633981879b3c9de9a1dd120d3aa585ecc2384

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/097633981879b3c9de9a1dd120d3aa585ecc2384

reference_url

https://github.com/python/cpython/issues/121650

reference_id

121650

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/issues/121650

reference_url

https://github.com/python/cpython/pull/122233

reference_id

122233

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/pull/122233

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2302255
reference_id	2302255
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2302255

reference_url

https://github.com/python/cpython/commit/4766d1200fdf8b6728137aa2927a297e224d5fa7

reference_id

4766d1200fdf8b6728137aa2927a297e224d5fa7

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/4766d1200fdf8b6728137aa2927a297e224d5fa7

reference_url

https://github.com/python/cpython/commit/4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0

reference_id

4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0

reference_url

https://github.com/python/cpython/commit/b158a76ce094897c870fb6b3de62887b7ccc33f1

reference_id

b158a76ce094897c870fb6b3de62887b7ccc33f1

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/b158a76ce094897c870fb6b3de62887b7ccc33f1

reference_url

https://github.com/python/cpython/commit/f7be505d137a22528cb0fc004422c0081d5d90e6

reference_id

f7be505d137a22528cb0fc004422c0081d5d90e6

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/f7be505d137a22528cb0fc004422c0081d5d90e6

reference_url

https://github.com/python/cpython/commit/f7c0f09e69e950cf3c5ada9dbde93898eb975533

reference_id

f7c0f09e69e950cf3c5ada9dbde93898eb975533

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/f7c0f09e69e950cf3c5ada9dbde93898eb975533

reference_url	https://security.gentoo.org/glsa/202506-07
reference_id	GLSA-202506-07
reference_type
scores
url	https://security.gentoo.org/glsa/202506-07

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW/

reference_id

QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW/

reference_url	https://access.redhat.com/errata/RHSA-2024:10135
reference_id	RHSA-2024:10135
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10135

reference_url	https://access.redhat.com/errata/RHSA-2024:11109
reference_id	RHSA-2024:11109
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11109

reference_url	https://access.redhat.com/errata/RHSA-2024:5962
reference_id	RHSA-2024:5962
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:5962

reference_url	https://access.redhat.com/errata/RHSA-2024:6146
reference_id	RHSA-2024:6146
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6146

reference_url	https://access.redhat.com/errata/RHSA-2024:6163
reference_id	RHSA-2024:6163
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6163

reference_url	https://access.redhat.com/errata/RHSA-2024:6179
reference_id	RHSA-2024:6179
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6179

reference_url	https://access.redhat.com/errata/RHSA-2024:6909
reference_id	RHSA-2024:6909
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6909

reference_url	https://access.redhat.com/errata/RHSA-2024:6915
reference_id	RHSA-2024:6915
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6915

reference_url	https://access.redhat.com/errata/RHSA-2024:6961
reference_id	RHSA-2024:6961
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6961

reference_url	https://access.redhat.com/errata/RHSA-2024:6962
reference_id	RHSA-2024:6962
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6962

reference_url	https://access.redhat.com/errata/RHSA-2024:6975
reference_id	RHSA-2024:6975
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6975

reference_url	https://access.redhat.com/errata/RHSA-2024:7137
reference_id	RHSA-2024:7137
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7137

reference_url	https://access.redhat.com/errata/RHSA-2024:7213
reference_id	RHSA-2024:7213
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7213

reference_url	https://access.redhat.com/errata/RHSA-2024:7374
reference_id	RHSA-2024:7374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7374

reference_url	https://access.redhat.com/errata/RHSA-2024:7415
reference_id	RHSA-2024:7415
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7415

reference_url	https://access.redhat.com/errata/RHSA-2024:8103
reference_id	RHSA-2024:8103
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8103

reference_url	https://usn.ubuntu.com/7015-1/
reference_id	USN-7015-1
reference_type
scores
url	https://usn.ubuntu.com/7015-1/

reference_url	https://usn.ubuntu.com/7015-5/
reference_id	USN-7015-5
reference_type
scores
url	https://usn.ubuntu.com/7015-5/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

url pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2

purl pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2

aliases CVE-2024-6923

risk_score 3.0

exploitability 0.5

weighted_severity 6.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9nvp-aus1-9yed

url VCID-9sms-mhht-n3aq

vulnerability_id VCID-9sms-mhht-n3aq

summary python: Mishandling of comma during folding and unicode-encoding of email headers

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1795.json

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1795.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-1795

reference_id

reference_type

scores

value	0.00593
scoring_system	epss
scoring_elements	0.6923
published_at	2026-04-04T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.6921
published_at	2026-04-02T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69212
published_at	2026-04-07T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73279
published_at	2026-04-24T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73224
published_at	2026-04-11T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73205
published_at	2026-04-12T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73199
published_at	2026-04-13T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73242
published_at	2026-04-16T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73251
published_at	2026-04-18T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73244
published_at	2026-04-21T12:55:00Z

value	0.00791
scoring_system	epss
scoring_elements	0.73886
published_at	2026-04-09T12:55:00Z

value	0.00873
scoring_system	epss
scoring_elements	0.75243
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-1795

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1795
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1795

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/commit/09fab93c3d857496c0bd162797fab816c311ee48

reference_id

09fab93c3d857496c0bd162797fab816c311ee48

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/commit/09fab93c3d857496c0bd162797fab816c311ee48

reference_url

https://github.com/python/cpython/issues/100884

reference_id

100884

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/issues/100884

reference_url

https://github.com/python/cpython/pull/100885

reference_id

100885

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/pull/100885

reference_url

https://github.com/python/cpython/pull/119099

reference_id

119099

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/pull/119099

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2349061
reference_id	2349061
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2349061

reference_url

https://github.com/python/cpython/commit/70754d21c288535e86070ca7a6e90dcb670b8593

reference_id

70754d21c288535e86070ca7a6e90dcb670b8593

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/commit/70754d21c288535e86070ca7a6e90dcb670b8593

reference_url

https://github.com/python/cpython/commit/9148b77e0af91cdacaa7fe3dfac09635c3fe9a74

reference_id

9148b77e0af91cdacaa7fe3dfac09635c3fe9a74

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/commit/9148b77e0af91cdacaa7fe3dfac09635c3fe9a74

reference_url

https://github.com/python/cpython/commit/a4ef689ce670684ec132204b1cd03720c8e0a03d

reference_id

a4ef689ce670684ec132204b1cd03720c8e0a03d

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/commit/a4ef689ce670684ec132204b1cd03720c8e0a03d

reference_url

https://github.com/python/cpython/commit/d4df3c55e4c5513947f907f24766b34d2ae8c090

reference_id

d4df3c55e4c5513947f907f24766b34d2ae8c090

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/commit/d4df3c55e4c5513947f907f24766b34d2ae8c090

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR/

reference_id

MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR/

reference_url	https://usn.ubuntu.com/7570-1/
reference_id	USN-7570-1
reference_type
scores
url	https://usn.ubuntu.com/7570-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

url pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2

purl pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2

aliases CVE-2025-1795

risk_score 1.4

exploitability 0.5

weighted_severity 2.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9sms-mhht-n3aq

url VCID-ct6h-d1eh-7bgj

vulnerability_id VCID-ct6h-d1eh-7bgj

summary python: urllib: Regular expression DoS in AbstractBasicAuthHandler

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3733.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3733.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-3733

reference_id

reference_type

scores

value	0.00653
scoring_system	epss
scoring_elements	0.70978
published_at	2026-04-24T12:55:00Z

value	0.00666
scoring_system	epss
scoring_elements	0.71189
published_at	2026-04-01T12:55:00Z

value	0.00666
scoring_system	epss
scoring_elements	0.71216
published_at	2026-04-04T12:55:00Z

value	0.00666
scoring_system	epss
scoring_elements	0.71198
published_at	2026-04-02T12:55:00Z

value	0.0076
scoring_system	epss
scoring_elements	0.73337
published_at	2026-04-09T12:55:00Z

value	0.0076
scoring_system	epss
scoring_elements	0.73341
published_at	2026-04-12T12:55:00Z

value	0.0076
scoring_system	epss
scoring_elements	0.73333
published_at	2026-04-13T12:55:00Z

value	0.0076
scoring_system	epss
scoring_elements	0.73376
published_at	2026-04-16T12:55:00Z

value	0.0076
scoring_system	epss
scoring_elements	0.73383
published_at	2026-04-18T12:55:00Z

value	0.0076
scoring_system	epss
scoring_elements	0.73377
published_at	2026-04-21T12:55:00Z

value	0.0076
scoring_system	epss
scoring_elements	0.73361
published_at	2026-04-11T12:55:00Z

value	0.0076
scoring_system	epss
scoring_elements	0.73288
published_at	2026-04-07T12:55:00Z

value	0.0076
scoring_system	epss
scoring_elements	0.73324
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-3733

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3733
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3733

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1995234
reference_id	1995234
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1995234

reference_url	https://access.redhat.com/errata/RHSA-2021:4057
reference_id	RHSA-2021:4057
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4057

reference_url	https://access.redhat.com/errata/RHSA-2021:4160
reference_id	RHSA-2021:4160
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4160

reference_url	https://access.redhat.com/errata/RHSA-2022:1663
reference_id	RHSA-2022:1663
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1663

reference_url	https://access.redhat.com/errata/RHSA-2022:1764
reference_id	RHSA-2022:1764
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1764

reference_url	https://access.redhat.com/errata/RHSA-2022:1821
reference_id	RHSA-2022:1821
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1821

reference_url	https://usn.ubuntu.com/5083-1/
reference_id	USN-5083-1
reference_type
scores
url	https://usn.ubuntu.com/5083-1/

reference_url	https://usn.ubuntu.com/5199-1/
reference_id	USN-5199-1
reference_type
scores
url	https://usn.ubuntu.com/5199-1/

reference_url	https://usn.ubuntu.com/5200-1/
reference_id	USN-5200-1
reference_type
scores
url	https://usn.ubuntu.com/5200-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29cz-9gkc-1bfx

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4gsg-5e6s-63g4

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-7ka5-7jrn-dber

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8hug-fhhb-sbgt

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-a8mv-mr3q-vygz

vulnerability	VCID-bqp2-x383-xqfh

vulnerability	VCID-dexx-3ssz-nqfg

vulnerability	VCID-e6rs-jwvu-jycd

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-h7z2-vc14-nfhq

vulnerability	VCID-js5p-py72-2kga

vulnerability	VCID-qqh6-evfk-1fgy

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-tbuw-2msj-tqd9

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2

aliases CVE-2021-3733

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ct6h-d1eh-7bgj

url VCID-dexx-3ssz-nqfg

vulnerability_id VCID-dexx-3ssz-nqfg

summary python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27043.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27043.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-27043

reference_id

reference_type

scores

value	0.00175
scoring_system	epss
scoring_elements	0.39102
published_at	2026-04-11T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39083
published_at	2026-04-02T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39044
published_at	2026-04-13T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39064
published_at	2026-04-12T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39089
published_at	2026-04-09T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.38674
published_at	2026-04-24T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.38839
published_at	2026-04-21T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39069
published_at	2026-04-18T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39099
published_at	2026-04-16T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39103
published_at	2026-04-04T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39021
published_at	2026-04-07T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39074
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-27043

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27043
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27043

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/102988

reference_id

102988

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://github.com/python/cpython/issues/102988

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059298
reference_id	1059298
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059298

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072179
reference_id	1072179
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072179

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2196183
reference_id	2196183
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2196183

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV/

reference_id

4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC/

reference_id

75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH/

reference_id

ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BQAKLUJMHFGVBRDPEY57BJGNCE5UUPHW/

reference_id

BQAKLUJMHFGVBRDPEY57BJGNCE5UUPHW

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BQAKLUJMHFGVBRDPEY57BJGNCE5UUPHW/

reference_url

https://python-security.readthedocs.io/vuln/email-parseaddr-realname.html

reference_id

email-parseaddr-realname.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://python-security.readthedocs.io/vuln/email-parseaddr-realname.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXYVPEZUA3465AEFX5JVFVP7KIFZMF3N/

reference_id

HXYVPEZUA3465AEFX5JVFVP7KIFZMF3N

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXYVPEZUA3465AEFX5JVFVP7KIFZMF3N/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z/

reference_id

N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3/

reference_id

NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3/

reference_url

https://security.netapp.com/advisory/ntap-20230601-0003/

reference_id

ntap-20230601-0003

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://security.netapp.com/advisory/ntap-20230601-0003/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW/

reference_id

ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC/

reference_id

P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH/

reference_id

P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5/

reference_id

PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J/

reference_id

PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J/

reference_url

http://python.org

reference_id

python.org

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

http://python.org

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QDRDDPDN3VFIYXJIYEABY6USX5EU66AG/

reference_id

QDRDDPDN3VFIYXJIYEABY6USX5EU66AG

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QDRDDPDN3VFIYXJIYEABY6USX5EU66AG/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC/

reference_id

RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC/

reference_url	https://access.redhat.com/errata/RHSA-2024:0256
reference_id	RHSA-2024:0256
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0256

reference_url	https://access.redhat.com/errata/RHSA-2024:0430
reference_id	RHSA-2024:0430
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0430

reference_url	https://access.redhat.com/errata/RHSA-2024:0454
reference_id	RHSA-2024:0454
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0454

reference_url	https://access.redhat.com/errata/RHSA-2024:0466
reference_id	RHSA-2024:0466
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0466

reference_url	https://access.redhat.com/errata/RHSA-2024:0586
reference_id	RHSA-2024:0586
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0586

reference_url	https://access.redhat.com/errata/RHSA-2024:1383
reference_id	RHSA-2024:1383
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1383

reference_url	https://access.redhat.com/errata/RHSA-2024:2292
reference_id	RHSA-2024:2292
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2292

reference_url	https://access.redhat.com/errata/RHSA-2024:2985
reference_id	RHSA-2024:2985
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2985

reference_url	https://access.redhat.com/errata/RHSA-2024:3062
reference_id	RHSA-2024:3062
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3062

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ/

reference_id

SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR/

reference_id

SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR/

reference_url	https://usn.ubuntu.com/7015-1/
reference_id	USN-7015-1
reference_type
scores
url	https://usn.ubuntu.com/7015-1/

reference_url	https://usn.ubuntu.com/7015-3/
reference_id	USN-7015-3
reference_type
scores
url	https://usn.ubuntu.com/7015-3/

reference_url	https://usn.ubuntu.com/7015-4/
reference_id	USN-7015-4
reference_type
scores
url	https://usn.ubuntu.com/7015-4/

reference_url	https://usn.ubuntu.com/7015-7/
reference_id	USN-7015-7
reference_type
scores
url	https://usn.ubuntu.com/7015-7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP/

reference_id

VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS/

reference_id

XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YQVY5C5REXWJIORJIL2FIL3ALOEJEF72/

reference_id

YQVY5C5REXWJIORJIL2FIL3ALOEJEF72

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YQVY5C5REXWJIORJIL2FIL3ALOEJEF72/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2023-27043

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dexx-3ssz-nqfg

url VCID-e6rs-jwvu-jycd

vulnerability_id VCID-e6rs-jwvu-jycd

summary python: urllib: HTTP client possible infinite loop on a 100 Continue response

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3737.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3737.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-3737

reference_id

reference_type

scores

value	0.00119
scoring_system	epss
scoring_elements	0.30825
published_at	2026-04-01T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30906
published_at	2026-04-09T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30954
published_at	2026-04-02T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30583
published_at	2026-04-24T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30749
published_at	2026-04-21T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30832
published_at	2026-04-18T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30852
published_at	2026-04-16T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30821
published_at	2026-04-13T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30866
published_at	2026-04-12T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.31001
published_at	2026-04-04T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30818
published_at	2026-04-07T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30876
published_at	2026-04-08T12:55:00Z

value	0.00119
scoring_system	epss
scoring_elements	0.30909
published_at	2026-04-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-3737

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3737
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3737

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=1995162

reference_id

1995162

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=1995162

reference_url

https://github.com/python/cpython/pull/25916

reference_id

25916

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/

url

https://github.com/python/cpython/pull/25916

reference_url

https://github.com/python/cpython/pull/26503

reference_id

26503

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/

url

https://github.com/python/cpython/pull/26503

reference_url

https://ubuntu.com/security/CVE-2021-3737

reference_id

CVE-2021-3737

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/

url

https://ubuntu.com/security/CVE-2021-3737

reference_url

https://bugs.python.org/issue44022

reference_id

issue44022

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/

url

https://bugs.python.org/issue44022

reference_url

https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html

reference_id

msg00024.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/

url

https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html

reference_url

https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html

reference_id

msg00039.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/

url

https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html

reference_url

https://security.netapp.com/advisory/ntap-20220407-0009/

reference_id

ntap-20220407-0009

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/

url

https://security.netapp.com/advisory/ntap-20220407-0009/

reference_url	https://access.redhat.com/errata/RHSA-2021:4160
reference_id	RHSA-2021:4160
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4160

reference_url	https://access.redhat.com/errata/RHSA-2022:1663
reference_id	RHSA-2022:1663
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1663

reference_url	https://access.redhat.com/errata/RHSA-2022:1764
reference_id	RHSA-2022:1764
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1764

reference_url	https://access.redhat.com/errata/RHSA-2022:1821
reference_id	RHSA-2022:1821
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1821

reference_url	https://access.redhat.com/errata/RHSA-2022:1986
reference_id	RHSA-2022:1986
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1986

reference_url

https://python-security.readthedocs.io/vuln/urllib-100-continue-loop.html

reference_id

urllib-100-continue-loop.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:32:43Z/

url

https://python-security.readthedocs.io/vuln/urllib-100-continue-loop.html

reference_url	https://usn.ubuntu.com/5083-1/
reference_id	USN-5083-1
reference_type
scores
url	https://usn.ubuntu.com/5083-1/

reference_url	https://usn.ubuntu.com/5199-1/
reference_id	USN-5199-1
reference_type
scores
url	https://usn.ubuntu.com/5199-1/

reference_url	https://usn.ubuntu.com/5200-1/
reference_id	USN-5200-1
reference_type
scores
url	https://usn.ubuntu.com/5200-1/

reference_url	https://usn.ubuntu.com/5201-1/
reference_id	USN-5201-1
reference_type
scores
url	https://usn.ubuntu.com/5201-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2021-3737

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e6rs-jwvu-jycd

url VCID-e6sb-bh7v-9ugg

vulnerability_id VCID-e6sb-bh7v-9ugg

summary python: cpython: URL parser allowed square brackets in domain names

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0938.json

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0938.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-0938

reference_id

reference_type

scores

value	0.01412
scoring_system	epss
scoring_elements	0.80562
published_at	2026-04-21T12:55:00Z

value	0.0148
scoring_system	epss
scoring_elements	0.81049
published_at	2026-04-24T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81448
published_at	2026-04-04T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81426
published_at	2026-04-02T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81482
published_at	2026-04-13T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81489
published_at	2026-04-12T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81501
published_at	2026-04-11T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.8148
published_at	2026-04-09T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81474
published_at	2026-04-08T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81446
published_at	2026-04-07T12:55:00Z

value	0.01728
scoring_system	epss
scoring_elements	0.82481
published_at	2026-04-18T12:55:00Z

value	0.01728
scoring_system	epss
scoring_elements	0.8248
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-0938

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0938
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0938

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/105704

reference_id

105704

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/issues/105704

reference_url

https://github.com/python/cpython/pull/129418

reference_id

129418

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/pull/129418

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2343237
reference_id	2343237
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2343237

reference_url

https://github.com/python/cpython/commit/526617ed68cde460236c973e5d0a8bad4de896ba

reference_id

526617ed68cde460236c973e5d0a8bad4de896ba

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/commit/526617ed68cde460236c973e5d0a8bad4de896ba

reference_url

https://github.com/python/cpython/commit/90e526ae67b172ed7c6c56e7edad36263b0f9403

reference_id

90e526ae67b172ed7c6c56e7edad36263b0f9403

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/commit/90e526ae67b172ed7c6c56e7edad36263b0f9403

reference_url

https://github.com/python/cpython/commit/a7084f6075c9595ba60119ce8c62f1496f50c568

reference_id

a7084f6075c9595ba60119ce8c62f1496f50c568

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/commit/a7084f6075c9595ba60119ce8c62f1496f50c568

reference_url

https://github.com/python/cpython/commit/b8b4b713c5f8ec0958c7ef8d29d6711889bc94ab

reference_id

b8b4b713c5f8ec0958c7ef8d29d6711889bc94ab

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/commit/b8b4b713c5f8ec0958c7ef8d29d6711889bc94ab

reference_url

https://github.com/python/cpython/commit/d89a5f6a6e65511a5f6e0618c4c30a7aa5aba56a

reference_id

d89a5f6a6e65511a5f6e0618c4c30a7aa5aba56a

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/commit/d89a5f6a6e65511a5f6e0618c4c30a7aa5aba56a

reference_url

https://github.com/python/cpython/commit/ff4e5c25666f63544071a6b075ae8b25c98b7a32

reference_id

ff4e5c25666f63544071a6b075ae8b25c98b7a32

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/commit/ff4e5c25666f63544071a6b075ae8b25c98b7a32

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB/

reference_id

K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB/

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url	https://access.redhat.com/errata/RHSA-2025:6977
reference_id	RHSA-2025:6977
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:6977

reference_url	https://access.redhat.com/errata/RHSA-2025:7107
reference_id	RHSA-2025:7107
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7107

reference_url	https://access.redhat.com/errata/RHSA-2025:7109
reference_id	RHSA-2025:7109
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7109

reference_url	https://access.redhat.com/errata/RHSA-2025:8385
reference_id	RHSA-2025:8385
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8385

reference_url	https://access.redhat.com/errata/RHSA-2026:5588
reference_id	RHSA-2026:5588
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5588

reference_url	https://usn.ubuntu.com/7280-1/
reference_id	USN-7280-1
reference_type
scores
url	https://usn.ubuntu.com/7280-1/

reference_url	https://usn.ubuntu.com/7280-2/
reference_id	USN-7280-2
reference_type
scores
url	https://usn.ubuntu.com/7280-2/

reference_url	https://usn.ubuntu.com/7280-3/
reference_id	USN-7280-3
reference_type
scores
url	https://usn.ubuntu.com/7280-3/

reference_url	https://usn.ubuntu.com/7348-1/
reference_id	USN-7348-1
reference_type
scores
url	https://usn.ubuntu.com/7348-1/

reference_url	https://usn.ubuntu.com/7348-2/
reference_id	USN-7348-2
reference_type
scores
url	https://usn.ubuntu.com/7348-2/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

url pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2

purl pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2

aliases CVE-2025-0938

risk_score 3.0

exploitability 0.5

weighted_severity 6.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e6sb-bh7v-9ugg

url VCID-emaw-jmek-9bcy

vulnerability_id VCID-emaw-jmek-9bcy

summary cpython: Python HTMLParser quadratic complexity

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6069.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6069.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-6069

reference_id

reference_type

scores

value	0.00283
scoring_system	epss
scoring_elements	0.51588
published_at	2026-04-02T12:55:00Z

value	0.00306
scoring_system	epss
scoring_elements	0.5389
published_at	2026-04-11T12:55:00Z

value	0.00306
scoring_system	epss
scoring_elements	0.53842
published_at	2026-04-09T12:55:00Z

value	0.00306
scoring_system	epss
scoring_elements	0.53844
published_at	2026-04-08T12:55:00Z

value	0.00306
scoring_system	epss
scoring_elements	0.53818
published_at	2026-04-04T12:55:00Z

value	0.00306
scoring_system	epss
scoring_elements	0.53792
published_at	2026-04-07T12:55:00Z

value	0.00306
scoring_system	epss
scoring_elements	0.53873
published_at	2026-04-12T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75159
published_at	2026-04-24T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75086
published_at	2026-04-13T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.75123
published_at	2026-04-16T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.7513
published_at	2026-04-18T12:55:00Z

value	0.00864
scoring_system	epss
scoring_elements	0.7512
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-6069

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6069
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6069

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109376
reference_id	1109376
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1109376

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118430
reference_id	1118430
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118430

reference_url

https://github.com/python/cpython/issues/135462

reference_id

135462

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/

url

https://github.com/python/cpython/issues/135462

reference_url

https://github.com/python/cpython/pull/135464

reference_id

135464

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/

url

https://github.com/python/cpython/pull/135464

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2373234
reference_id	2373234
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2373234

reference_url

https://github.com/python/cpython/commit/4455cbabf991e202185a25a631af206f60bbc949

reference_id

4455cbabf991e202185a25a631af206f60bbc949

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/

url

https://github.com/python/cpython/commit/4455cbabf991e202185a25a631af206f60bbc949

reference_url

https://github.com/python/cpython/commit/6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41

reference_id

6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/

url

https://github.com/python/cpython/commit/6eb6c5dbfb528bd07d77b60fd71fd05d81d45c41

reference_url

https://github.com/python/cpython/commit/8d1b3dfa09135affbbf27fb8babcf3c11415df49

reference_id

8d1b3dfa09135affbbf27fb8babcf3c11415df49

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/

url

https://github.com/python/cpython/commit/8d1b3dfa09135affbbf27fb8babcf3c11415df49

reference_url

https://github.com/python/cpython/commit/ab0893fd5c579d9cea30841680e6d35fc478afb5

reference_id

ab0893fd5c579d9cea30841680e6d35fc478afb5

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/

url

https://github.com/python/cpython/commit/ab0893fd5c579d9cea30841680e6d35fc478afb5

reference_url

https://github.com/python/cpython/commit/d851f8e258c7328814943e923a7df81bca15df4b

reference_id

d851f8e258c7328814943e923a7df81bca15df4b

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/

url

https://github.com/python/cpython/commit/d851f8e258c7328814943e923a7df81bca15df4b

reference_url

https://github.com/python/cpython/commit/f3c6f882cddc8dc30320d2e73edf019e201394fc

reference_id

f3c6f882cddc8dc30320d2e73edf019e201394fc

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/

url

https://github.com/python/cpython/commit/f3c6f882cddc8dc30320d2e73edf019e201394fc

reference_url

https://github.com/python/cpython/commit/fdc9d214c01cb4588f540cfa03726bbf2a33fc15

reference_id

fdc9d214c01cb4588f540cfa03726bbf2a33fc15

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/

url

https://github.com/python/cpython/commit/fdc9d214c01cb4588f540cfa03726bbf2a33fc15

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM/

reference_id

K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T13:58:28Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/K5PIYLR6EP3WR7ZOKKYQUWEDNQVUXOYM/

reference_url	https://access.redhat.com/errata/RHSA-2025:23342
reference_id	RHSA-2025:23342
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23342

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url	https://access.redhat.com/errata/RHSA-2026:0414
reference_id	RHSA-2026:0414
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0414

reference_url	https://access.redhat.com/errata/RHSA-2026:0685
reference_id	RHSA-2026:0685
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0685

reference_url	https://access.redhat.com/errata/RHSA-2026:1652
reference_id	RHSA-2026:1652
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1652

reference_url	https://access.redhat.com/errata/RHSA-2026:1858
reference_id	RHSA-2026:1858
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1858

reference_url	https://usn.ubuntu.com/7710-1/
reference_id	USN-7710-1
reference_type
scores
url	https://usn.ubuntu.com/7710-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2025-6069

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-emaw-jmek-9bcy

url VCID-ewbq-2gm8-tyf5

vulnerability_id VCID-ewbq-2gm8-tyf5

summary

Buffer overflow in sponge queue functions
### Impact

The Keccak sponge function interface accepts partial inputs to be absorbed and partial outputs to be squeezed. A buffer can overflow when partial data with some specific sizes are queued, where at least one of them has a length of 2^32 - 200 bytes or more.

### Patches

Yes, see commit [fdc6fef0](https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a).

### Workarounds

The problem can be avoided by limiting the size of the partial input data (or partial output digest) below 2^32 - 200 bytes. Multiple calls to the queue system can be chained at a higher level to retain the original functionality. Alternatively, one can process the entire input (or produce the entire output) at once, avoiding the queuing functions altogether.

### References

See [issue #105](https://github.com/XKCP/XKCP/issues/105) for more details.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37454.json

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-37454.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-37454

reference_id

reference_type

scores

value	0.01329
scoring_system	epss
scoring_elements	0.79931
published_at	2026-04-08T12:55:00Z

value	0.01329
scoring_system	epss
scoring_elements	0.79894
published_at	2026-04-02T12:55:00Z

value	0.01329
scoring_system	epss
scoring_elements	0.79915
published_at	2026-04-04T12:55:00Z

value	0.01329
scoring_system	epss
scoring_elements	0.79935
published_at	2026-04-13T12:55:00Z

value	0.01329
scoring_system	epss
scoring_elements	0.79943
published_at	2026-04-12T12:55:00Z

value	0.01329
scoring_system	epss
scoring_elements	0.7996
published_at	2026-04-11T12:55:00Z

value	0.01329
scoring_system	epss
scoring_elements	0.7994
published_at	2026-04-09T12:55:00Z

value	0.01329
scoring_system	epss
scoring_elements	0.79903
published_at	2026-04-07T12:55:00Z

value	0.014
scoring_system	epss
scoring_elements	0.80449
published_at	2026-04-21T12:55:00Z

value	0.014
scoring_system	epss
scoring_elements	0.80475
published_at	2026-04-24T12:55:00Z

value	0.014
scoring_system	epss
scoring_elements	0.80444
published_at	2026-04-16T12:55:00Z

value	0.014
scoring_system	epss
scoring_elements	0.80446
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-37454

reference_url

https://csrc.nist.gov/projects/hash-functions/sha-3-project

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://csrc.nist.gov/projects/hash-functions/sha-3-project

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31628

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31629

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31630
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-31630

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37454
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-37454

reference_url

https://eprint.iacr.org/2023/331

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://eprint.iacr.org/2023/331

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/johanns/sha3/commit/5f2e8118a62831911703c8753ff2435c3b5d7312

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/johanns/sha3/commit/5f2e8118a62831911703c8753ff2435c3b5d7312

reference_url

https://github.com/johanns/sha3/issues/17

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/johanns/sha3/issues/17

reference_url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/sha3/CVE-2022-37454.yml

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/sha3/CVE-2022-37454.yml

reference_url

https://github.com/tiran/pysha3/issues/29

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/tiran/pysha3/issues/29

reference_url

https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a

reference_url

https://github.com/XKCP/XKCP/issues/105

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/XKCP/XKCP/issues/105

reference_url

https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://github.com/XKCP/XKCP/security/advisories/GHSA-6w4m-2xhg-2658

reference_url

https://lists.debian.org/debian-lts-announce/2022/10/msg00041.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://lists.debian.org/debian-lts-announce/2022/10/msg00041.html

reference_url

https://lists.debian.org/debian-lts-announce/2022/11/msg00000.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://lists.debian.org/debian-lts-announce/2022/11/msg00000.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3ALQ6BDDPX5HU5YBQOBMDVAA2TSGDKIJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMIEXLMTW5GO36HTFFWIPB3OHZXCT3G4/

reference_url

https://mouha.be/sha-3-buffer-overflow

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://mouha.be/sha-3-buffer-overflow

reference_url

https://mouha.be/sha-3-buffer-overflow/

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://mouha.be/sha-3-buffer-overflow/

reference_url

https://news.ycombinator.com/item?id=33281106

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://news.ycombinator.com/item?id=33281106

reference_url

https://news.ycombinator.com/item?id=35050307

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://news.ycombinator.com/item?id=35050307

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2022-37454

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-37454

reference_url

https://security.gentoo.org/glsa/202305-02

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://security.gentoo.org/glsa/202305-02

reference_url

https://www.debian.org/security/2022/dsa-5267

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://www.debian.org/security/2022/dsa-5267

reference_url

https://www.debian.org/security/2022/dsa-5269

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/

url

https://www.debian.org/security/2022/dsa-5269

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1023030
reference_id	1023030
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1023030

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2140200
reference_id	2140200
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2140200

reference_url

https://github.com/advisories/GHSA-6w4m-2xhg-2658

reference_id

GHSA-6w4m-2xhg-2658

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-6w4m-2xhg-2658

reference_url	https://security.gentoo.org/glsa/202211-03
reference_id	GLSA-202211-03
reference_type
scores
url	https://security.gentoo.org/glsa/202211-03

reference_url	https://access.redhat.com/errata/RHSA-2023:0848
reference_id	RHSA-2023:0848
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0848

reference_url	https://access.redhat.com/errata/RHSA-2023:0965
reference_id	RHSA-2023:0965
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0965

reference_url	https://access.redhat.com/errata/RHSA-2023:2417
reference_id	RHSA-2023:2417
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2417

reference_url	https://access.redhat.com/errata/RHSA-2023:2903
reference_id	RHSA-2023:2903
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2903

reference_url	https://usn.ubuntu.com/5717-1/
reference_id	USN-5717-1
reference_type
scores
url	https://usn.ubuntu.com/5717-1/

reference_url	https://usn.ubuntu.com/5767-1/
reference_id	USN-5767-1
reference_type
scores
url	https://usn.ubuntu.com/5767-1/

reference_url	https://usn.ubuntu.com/5767-3/
reference_id	USN-5767-3
reference_type
scores
url	https://usn.ubuntu.com/5767-3/

reference_url	https://usn.ubuntu.com/5888-1/
reference_id	USN-5888-1
reference_type
scores
url	https://usn.ubuntu.com/5888-1/

reference_url	https://usn.ubuntu.com/5930-1/
reference_id	USN-5930-1
reference_type
scores
url	https://usn.ubuntu.com/5930-1/

reference_url	https://usn.ubuntu.com/5931-1/
reference_id	USN-5931-1
reference_type
scores
url	https://usn.ubuntu.com/5931-1/

reference_url	https://usn.ubuntu.com/6524-1/
reference_id	USN-6524-1
reference_type
scores
url	https://usn.ubuntu.com/6524-1/

reference_url	https://usn.ubuntu.com/6525-1/
reference_id	USN-6525-1
reference_type
scores
url	https://usn.ubuntu.com/6525-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29cz-9gkc-1bfx

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4gsg-5e6s-63g4

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-7ka5-7jrn-dber

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8hug-fhhb-sbgt

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-a8mv-mr3q-vygz

vulnerability	VCID-bqp2-x383-xqfh

vulnerability	VCID-dexx-3ssz-nqfg

vulnerability	VCID-e6rs-jwvu-jycd

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-h7z2-vc14-nfhq

vulnerability	VCID-js5p-py72-2kga

vulnerability	VCID-qqh6-evfk-1fgy

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-tbuw-2msj-tqd9

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2

aliases CVE-2022-37454, GHSA-6w4m-2xhg-2658

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ewbq-2gm8-tyf5

url VCID-gvgx-eq9r-d3d2

vulnerability_id VCID-gvgx-eq9r-d3d2

summary

Multiple vulnerabilities have been found in Python, the worst of
    which could result in the arbitrary execution of code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26116.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-26116.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-26116

reference_id

reference_type

scores

value	0.00903
scoring_system	epss
scoring_elements	0.75643
published_at	2026-04-01T12:55:00Z

value	0.00903
scoring_system	epss
scoring_elements	0.75645
published_at	2026-04-02T12:55:00Z

value	0.00903
scoring_system	epss
scoring_elements	0.75676
published_at	2026-04-04T12:55:00Z

value	0.00903
scoring_system	epss
scoring_elements	0.75655
published_at	2026-04-07T12:55:00Z

value	0.00903
scoring_system	epss
scoring_elements	0.7569
published_at	2026-04-08T12:55:00Z

value	0.00903
scoring_system	epss
scoring_elements	0.757
published_at	2026-04-09T12:55:00Z

value	0.00903
scoring_system	epss
scoring_elements	0.75725
published_at	2026-04-11T12:55:00Z

value	0.00903
scoring_system	epss
scoring_elements	0.75706
published_at	2026-04-12T12:55:00Z

value	0.00903
scoring_system	epss
scoring_elements	0.75699
published_at	2026-04-13T12:55:00Z

value	0.01017
scoring_system	epss
scoring_elements	0.77248
published_at	2026-04-24T12:55:00Z

value	0.01017
scoring_system	epss
scoring_elements	0.7722
published_at	2026-04-16T12:55:00Z

value	0.01017
scoring_system	epss
scoring_elements	0.77222
published_at	2026-04-18T12:55:00Z

value	0.01017
scoring_system	epss
scoring_elements	0.77213
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-26116

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26116
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-26116

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1883014
reference_id	1883014
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1883014

reference_url	https://security.gentoo.org/glsa/202101-18
reference_id	GLSA-202101-18
reference_type
scores
url	https://security.gentoo.org/glsa/202101-18

reference_url	https://access.redhat.com/errata/RHSA-2020:4273
reference_id	RHSA-2020:4273
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4273

reference_url	https://access.redhat.com/errata/RHSA-2020:4285
reference_id	RHSA-2020:4285
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4285

reference_url	https://access.redhat.com/errata/RHSA-2020:4299
reference_id	RHSA-2020:4299
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4299

reference_url	https://access.redhat.com/errata/RHSA-2021:1633
reference_id	RHSA-2021:1633
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1633

reference_url	https://access.redhat.com/errata/RHSA-2021:1761
reference_id	RHSA-2021:1761
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1761

reference_url	https://access.redhat.com/errata/RHSA-2021:1879
reference_id	RHSA-2021:1879
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1879

reference_url	https://access.redhat.com/errata/RHSA-2021:3366
reference_id	RHSA-2021:3366
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:3366

reference_url	https://access.redhat.com/errata/RHSA-2022:5235
reference_id	RHSA-2022:5235
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5235

reference_url	https://usn.ubuntu.com/4581-1/
reference_id	USN-4581-1
reference_type
scores
url	https://usn.ubuntu.com/4581-1/

reference_url	https://usn.ubuntu.com/4754-3/
reference_id	USN-4754-3
reference_type
scores
url	https://usn.ubuntu.com/4754-3/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29cz-9gkc-1bfx

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4gsg-5e6s-63g4

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-7ka5-7jrn-dber

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8hug-fhhb-sbgt

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-a8mv-mr3q-vygz

vulnerability	VCID-bqp2-x383-xqfh

vulnerability	VCID-dexx-3ssz-nqfg

vulnerability	VCID-e6rs-jwvu-jycd

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-h7z2-vc14-nfhq

vulnerability	VCID-js5p-py72-2kga

vulnerability	VCID-qqh6-evfk-1fgy

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-tbuw-2msj-tqd9

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2

aliases CVE-2020-26116

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gvgx-eq9r-d3d2

url VCID-h7z2-vc14-nfhq

vulnerability_id VCID-h7z2-vc14-nfhq

summary python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10735.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10735.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-10735

reference_id

reference_type

scores

value	0.00384
scoring_system	epss
scoring_elements	0.59685
published_at	2026-04-24T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.5971
published_at	2026-04-12T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59691
published_at	2026-04-13T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59724
published_at	2026-04-16T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59731
published_at	2026-04-18T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59716
published_at	2026-04-21T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59693
published_at	2026-04-08T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59707
published_at	2026-04-09T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59726
published_at	2026-04-11T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60314
published_at	2026-04-02T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60339
published_at	2026-04-04T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60307
published_at	2026-04-07T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60237
published_at	2026-04-01T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-10735

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1834423
reference_id	1834423
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1834423

reference_url	https://access.redhat.com/errata/RHSA-2022:6766
reference_id	RHSA-2022:6766
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6766

reference_url	https://access.redhat.com/errata/RHSA-2022:7323
reference_id	RHSA-2022:7323
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7323

reference_url	https://access.redhat.com/errata/RHSA-2023:0833
reference_id	RHSA-2023:0833
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0833

reference_url	https://access.redhat.com/errata/RHSA-2023:2763
reference_id	RHSA-2023:2763
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2763

reference_url	https://access.redhat.com/errata/RHSA-2023:2764
reference_id	RHSA-2023:2764
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2764

reference_url	https://access.redhat.com/errata/RHSA-2024:0430
reference_id	RHSA-2024:0430
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0430

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2020-10735

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h7z2-vc14-nfhq

url VCID-j8hj-k7wy-yfch

vulnerability_id VCID-j8hj-k7wy-yfch

summary python: ftplib should not use the host from the PASV response

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4189.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4189.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-4189

reference_id

reference_type

scores

value	0.01057
scoring_system	epss
scoring_elements	0.77668
published_at	2026-04-24T12:55:00Z

value	0.01057
scoring_system	epss
scoring_elements	0.77547
published_at	2026-04-01T12:55:00Z

value	0.01057
scoring_system	epss
scoring_elements	0.77554
published_at	2026-04-02T12:55:00Z

value	0.01057
scoring_system	epss
scoring_elements	0.7758
published_at	2026-04-04T12:55:00Z

value	0.01057
scoring_system	epss
scoring_elements	0.7756
published_at	2026-04-07T12:55:00Z

value	0.01057
scoring_system	epss
scoring_elements	0.7759
published_at	2026-04-08T12:55:00Z

value	0.01057
scoring_system	epss
scoring_elements	0.77597
published_at	2026-04-09T12:55:00Z

value	0.01057
scoring_system	epss
scoring_elements	0.77624
published_at	2026-04-11T12:55:00Z

value	0.01057
scoring_system	epss
scoring_elements	0.77608
published_at	2026-04-12T12:55:00Z

value	0.01057
scoring_system	epss
scoring_elements	0.77607
published_at	2026-04-13T12:55:00Z

value	0.01057
scoring_system	epss
scoring_elements	0.77644
published_at	2026-04-16T12:55:00Z

value	0.01057
scoring_system	epss
scoring_elements	0.77642
published_at	2026-04-18T12:55:00Z

value	0.01057
scoring_system	epss
scoring_elements	0.77637
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-4189

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4189
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4189

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/commit/0ab152c6b5d95caa2dc1a30fa96e10258b5f188e

reference_id

0ab152c6b5d95caa2dc1a30fa96e10258b5f188e

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/

url

https://github.com/python/cpython/commit/0ab152c6b5d95caa2dc1a30fa96e10258b5f188e

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=2036020

reference_id

2036020

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=2036020

reference_url

https://access.redhat.com/security/cve/CVE-2021-4189

reference_id

CVE-2021-4189

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/

url

https://access.redhat.com/security/cve/CVE-2021-4189

reference_url

https://security-tracker.debian.org/tracker/CVE-2021-4189

reference_id

CVE-2021-4189

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/

url

https://security-tracker.debian.org/tracker/CVE-2021-4189

reference_url

https://python-security.readthedocs.io/vuln/ftplib-pasv.html

reference_id

ftplib-pasv.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/

url

https://python-security.readthedocs.io/vuln/ftplib-pasv.html

reference_url

https://bugs.python.org/issue43285

reference_id

issue43285

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/

url

https://bugs.python.org/issue43285

reference_url

https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html

reference_id

msg00024.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/

url

https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html

reference_url

https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html

reference_id

msg00039.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/

url

https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html

reference_url

https://security.netapp.com/advisory/ntap-20221104-0004/

reference_id

ntap-20221104-0004

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-25T14:59:42Z/

url

https://security.netapp.com/advisory/ntap-20221104-0004/

reference_url	https://access.redhat.com/errata/RHSA-2022:1663
reference_id	RHSA-2022:1663
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1663

reference_url	https://access.redhat.com/errata/RHSA-2022:1821
reference_id	RHSA-2022:1821
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1821

reference_url	https://access.redhat.com/errata/RHSA-2022:1986
reference_id	RHSA-2022:1986
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1986

reference_url	https://usn.ubuntu.com/5342-1/
reference_id	USN-5342-1
reference_type
scores
url	https://usn.ubuntu.com/5342-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/USN-5342-2/
reference_id	USN-USN-5342-2
reference_type
scores
url	https://usn.ubuntu.com/USN-5342-2/

fixed_packages

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29cz-9gkc-1bfx

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4gsg-5e6s-63g4

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-7ka5-7jrn-dber

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8hug-fhhb-sbgt

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-a8mv-mr3q-vygz

vulnerability	VCID-bqp2-x383-xqfh

vulnerability	VCID-dexx-3ssz-nqfg

vulnerability	VCID-e6rs-jwvu-jycd

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-h7z2-vc14-nfhq

vulnerability	VCID-js5p-py72-2kga

vulnerability	VCID-qqh6-evfk-1fgy

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-tbuw-2msj-tqd9

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2

aliases CVE-2021-4189

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j8hj-k7wy-yfch

url VCID-js5p-py72-2kga

vulnerability_id VCID-js5p-py72-2kga

summary Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0450.json

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0450.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-0450

reference_id

reference_type

scores

value	0.00148
scoring_system	epss
scoring_elements	0.35429
published_at	2026-04-02T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35411
published_at	2026-04-11T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35409
published_at	2026-04-09T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35384
published_at	2026-04-08T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35338
published_at	2026-04-07T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35454
published_at	2026-04-04T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35093
published_at	2026-04-24T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35328
published_at	2026-04-21T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.3538
published_at	2026-04-18T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35392
published_at	2026-04-16T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35352
published_at	2026-04-13T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35374
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-0450

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0450
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0450

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070133
reference_id	1070133
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070133

reference_url

https://github.com/python/cpython/issues/109858

reference_id

109858

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/issues/109858

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2276525
reference_id	2276525
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2276525

reference_url

https://github.com/python/cpython/commit/30fe5d853b56138dbec62432d370a1f99409fc85

reference_id

30fe5d853b56138dbec62432d370a1f99409fc85

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/30fe5d853b56138dbec62432d370a1f99409fc85

reference_url

http://www.openwall.com/lists/oss-security/2024/03/20/5

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

http://www.openwall.com/lists/oss-security/2024/03/20/5

reference_url

https://github.com/python/cpython/commit/66363b9a7b9fe7c99eba3a185b74c5fdbf842eba

reference_id

66363b9a7b9fe7c99eba3a185b74c5fdbf842eba

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/66363b9a7b9fe7c99eba3a185b74c5fdbf842eba

reference_url

https://github.com/python/cpython/commit/70497218351ba44bffc8b571201ecb5652d84675

reference_id

70497218351ba44bffc8b571201ecb5652d84675

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/70497218351ba44bffc8b571201ecb5652d84675

reference_url

https://github.com/python/cpython/commit/a2c59992e9e8d35baba9695eb186ad6c6ff85c51

reference_id

a2c59992e9e8d35baba9695eb186ad6c6ff85c51

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/a2c59992e9e8d35baba9695eb186ad6c6ff85c51

reference_url

https://github.com/python/cpython/commit/a956e510f6336d5ae111ba429a61c3ade30a7549

reference_id

a956e510f6336d5ae111ba429a61c3ade30a7549

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/a956e510f6336d5ae111ba429a61c3ade30a7549

reference_url

https://github.com/python/cpython/commit/d05bac0b74153beb541b88b4fca33bf053990183

reference_id

d05bac0b74153beb541b88b4fca33bf053990183

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/d05bac0b74153beb541b88b4fca33bf053990183

reference_url

https://github.com/python/cpython/commit/fa181fcf2156f703347b03a3b1966ce47be8ab3b

reference_id

fa181fcf2156f703347b03a3b1966ce47be8ab3b

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/fa181fcf2156f703347b03a3b1966ce47be8ab3b

reference_url	https://security.gentoo.org/glsa/202405-01
reference_id	GLSA-202405-01
reference_type
scores
url	https://security.gentoo.org/glsa/202405-01

reference_url

https://lists.debian.org/debian-lts-announce/2024/03/msg00024.html

reference_id

msg00024.html

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://lists.debian.org/debian-lts-announce/2024/03/msg00024.html

reference_url

https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html

reference_id

msg00025.html

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html

reference_url	https://access.redhat.com/errata/RHSA-2024:3347
reference_id	RHSA-2024:3347
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3347

reference_url	https://access.redhat.com/errata/RHSA-2024:3391
reference_id	RHSA-2024:3391
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3391

reference_url	https://access.redhat.com/errata/RHSA-2024:3466
reference_id	RHSA-2024:3466
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3466

reference_url	https://access.redhat.com/errata/RHSA-2024:4058
reference_id	RHSA-2024:4058
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4058

reference_url	https://access.redhat.com/errata/RHSA-2024:4078
reference_id	RHSA-2024:4078
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4078

reference_url	https://access.redhat.com/errata/RHSA-2024:4243
reference_id	RHSA-2024:4243
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4243

reference_url	https://access.redhat.com/errata/RHSA-2024:4406
reference_id	RHSA-2024:4406
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4406

reference_url	https://access.redhat.com/errata/RHSA-2024:9190
reference_id	RHSA-2024:9190
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9190

reference_url	https://access.redhat.com/errata/RHSA-2024:9192
reference_id	RHSA-2024:9192
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9192

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/

reference_id

T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/

reference_id

U5VHWS52HGD743C47UMCSAK2A773M2YE

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/7212-1/
reference_id	USN-7212-1
reference_type
scores
url	https://usn.ubuntu.com/7212-1/

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG/

reference_id

XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG/

reference_url

https://www.bamsoftware.com/hacks/zipbomb/

reference_id

zipbomb

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://www.bamsoftware.com/hacks/zipbomb/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2024-0450

risk_score 2.8

exploitability 0.5

weighted_severity 5.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-js5p-py72-2kga

url VCID-qqh6-evfk-1fgy

vulnerability_id VCID-qqh6-evfk-1fgy

summary Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-45061.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-45061.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-45061

reference_id

reference_type

scores

value	0.00109
scoring_system	epss
scoring_elements	0.29338
published_at	2026-04-02T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29264
published_at	2026-04-08T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29387
published_at	2026-04-04T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.292
published_at	2026-04-07T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29236
published_at	2026-04-16T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29209
published_at	2026-04-13T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29262
published_at	2026-04-12T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29308
published_at	2026-04-11T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29304
published_at	2026-04-09T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31524
published_at	2026-04-21T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31557
published_at	2026-04-18T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.3135
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-45061

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2144072
reference_id	2144072
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2144072

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/

reference_id

2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/

reference_id

35YDIWCUMWTMDBWFRAVENFH6BLB65D6S

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/

reference_id

4WBZJNSALFGMPYTINIF57HAAK46U72WQ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/

reference_id

63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/

reference_id

7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/

reference_url

https://github.com/python/cpython/issues/98433

reference_id

98433

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://github.com/python/cpython/issues/98433

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/

reference_id

B3YI6JYARWU6GULWOHNUROSACT54XFFS

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH/

reference_id

B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR/

reference_id

BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/

reference_id

GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/

reference_id

IN26PWZTYG6IF3APLRXQJBVACQHZUPT2

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/

reference_id

JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/

reference_id

JTYVESWVBPD57ZJC35G5722Q6TS37WSB

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/

reference_id

KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/

reference_id

LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/

reference_url

https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html

reference_id

msg00024.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html

reference_url

https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html

reference_id

msg00039.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html

reference_url

https://security.netapp.com/advisory/ntap-20221209-0007/

reference_id

ntap-20221209-0007

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://security.netapp.com/advisory/ntap-20221209-0007/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/

reference_id

O67LRHDTJWH544KXB6KY4HMHQLYDXFPK

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/

reference_id

ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/

reference_id

PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L/

reference_id

QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/

reference_id

QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/

reference_id

RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/

reference_id

RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/

reference_url	https://access.redhat.com/errata/RHSA-2023:0833
reference_id	RHSA-2023:0833
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0833

reference_url	https://access.redhat.com/errata/RHSA-2023:0953
reference_id	RHSA-2023:0953
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0953

reference_url	https://access.redhat.com/errata/RHSA-2023:2763
reference_id	RHSA-2023:2763
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2763

reference_url	https://access.redhat.com/errata/RHSA-2023:2764
reference_id	RHSA-2023:2764
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2764

reference_url	https://access.redhat.com/errata/RHSA-2023:2860
reference_id	RHSA-2023:2860
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2860

reference_url	https://access.redhat.com/errata/RHSA-2023:6793
reference_id	RHSA-2023:6793
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6793

reference_url	https://access.redhat.com/errata/RHSA-2024:0430
reference_id	RHSA-2024:0430
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0430

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/

reference_id

RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/

reference_id

T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/

reference_id

UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/

reference_url	https://usn.ubuntu.com/5767-1/
reference_id	USN-5767-1
reference_type
scores
url	https://usn.ubuntu.com/5767-1/

reference_url	https://usn.ubuntu.com/5767-2/
reference_id	USN-5767-2
reference_type
scores
url	https://usn.ubuntu.com/5767-2/

reference_url	https://usn.ubuntu.com/5888-1/
reference_id	USN-5888-1
reference_type
scores
url	https://usn.ubuntu.com/5888-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/7212-1/
reference_id	USN-7212-1
reference_type
scores
url	https://usn.ubuntu.com/7212-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/

reference_id

VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/

reference_id

X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/

reference_id

XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/

reference_id

YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/

reference_id

ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2022-45061

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qqh6-evfk-1fgy

url VCID-smck-sdx2-c7du

vulnerability_id VCID-smck-sdx2-c7du

summary python: Improper validation of IPv6 and IPvFuture addresses

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11168.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11168.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-11168

reference_id

reference_type

scores

value	0.00475
scoring_system	epss
scoring_elements	0.64815
published_at	2026-04-09T12:55:00Z

value	0.00475
scoring_system	epss
scoring_elements	0.64801
published_at	2026-04-08T12:55:00Z

value	0.00475
scoring_system	epss
scoring_elements	0.64751
published_at	2026-04-07T12:55:00Z

value	0.00517
scoring_system	epss
scoring_elements	0.66749
published_at	2026-04-12T12:55:00Z

value	0.00517
scoring_system	epss
scoring_elements	0.6672
published_at	2026-04-13T12:55:00Z

value	0.00517
scoring_system	epss
scoring_elements	0.66762
published_at	2026-04-11T12:55:00Z

value	0.00552
scoring_system	epss
scoring_elements	0.68006
published_at	2026-04-04T12:55:00Z

value	0.00552
scoring_system	epss
scoring_elements	0.67987
published_at	2026-04-02T12:55:00Z

value	0.00602
scoring_system	epss
scoring_elements	0.69586
published_at	2026-04-24T12:55:00Z

value	0.00602
scoring_system	epss
scoring_elements	0.69544
published_at	2026-04-16T12:55:00Z

value	0.00602
scoring_system	epss
scoring_elements	0.69553
published_at	2026-04-18T12:55:00Z

value	0.00602
scoring_system	epss
scoring_elements	0.69534
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-11168

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11168
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11168

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/103848

reference_id

103848

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://github.com/python/cpython/issues/103848

reference_url

https://github.com/python/cpython/pull/103849

reference_id

103849

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://github.com/python/cpython/pull/103849

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2325776
reference_id	2325776
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2325776

reference_url

https://github.com/python/cpython/commit/29f348e232e82938ba2165843c448c2b291504c5

reference_id

29f348e232e82938ba2165843c448c2b291504c5

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://github.com/python/cpython/commit/29f348e232e82938ba2165843c448c2b291504c5

reference_url

https://github.com/python/cpython/commit/634ded45545ce8cbd6fd5d49785613dd7fa9b89e

reference_id

634ded45545ce8cbd6fd5d49785613dd7fa9b89e

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://github.com/python/cpython/commit/634ded45545ce8cbd6fd5d49785613dd7fa9b89e

reference_url

https://github.com/python/cpython/commit/b2171a2fd41416cf68afd67460578631d755a550

reference_id

b2171a2fd41416cf68afd67460578631d755a550

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://github.com/python/cpython/commit/b2171a2fd41416cf68afd67460578631d755a550

reference_url

https://github.com/python/cpython/commit/ddca2953191c67a12b1f19d6bca41016c6ae7132

reference_id

ddca2953191c67a12b1f19d6bca41016c6ae7132

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://github.com/python/cpython/commit/ddca2953191c67a12b1f19d6bca41016c6ae7132

reference_url	https://access.redhat.com/errata/RHSA-2024:10779
reference_id	RHSA-2024:10779
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10779

reference_url	https://access.redhat.com/errata/RHSA-2024:10983
reference_id	RHSA-2024:10983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10983

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url	https://usn.ubuntu.com/7218-1/
reference_id	USN-7218-1
reference_type
scores
url	https://usn.ubuntu.com/7218-1/

reference_url	https://usn.ubuntu.com/7280-3/
reference_id	USN-7280-3
reference_type
scores
url	https://usn.ubuntu.com/7280-3/

reference_url	https://usn.ubuntu.com/7348-1/
reference_id	USN-7348-1
reference_type
scores
url	https://usn.ubuntu.com/7348-1/

reference_url	https://usn.ubuntu.com/7488-1/
reference_id	USN-7488-1
reference_type
scores
url	https://usn.ubuntu.com/7488-1/

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T/

reference_id

XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

url pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2

purl pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2

aliases CVE-2024-11168

risk_score 2.9

exploitability 0.5

weighted_severity 5.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-smck-sdx2-c7du

url VCID-tbuw-2msj-tqd9

vulnerability_id VCID-tbuw-2msj-tqd9

summary python: Virtual environment (venv) activation scripts don't quote paths

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9287.json

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9287.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-9287

reference_id

reference_type

scores

value	0.00062
scoring_system	epss
scoring_elements	0.19545
published_at	2026-04-02T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19591
published_at	2026-04-04T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.1976
published_at	2026-04-24T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19835
published_at	2026-04-07T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19915
published_at	2026-04-08T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19969
published_at	2026-04-09T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19987
published_at	2026-04-11T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19944
published_at	2026-04-12T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19885
published_at	2026-04-13T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19862
published_at	2026-04-16T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19866
published_at	2026-04-18T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19864
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-9287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9287

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1089117
reference_id	1089117
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1089117

reference_url

https://github.com/python/cpython/issues/124651

reference_id

124651

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/issues/124651

reference_url

https://github.com/python/cpython/pull/124712

reference_id

124712

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/pull/124712

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2321440
reference_id	2321440
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2321440

reference_url

https://github.com/python/cpython/commit/633555735a023d3e4d92ba31da35b1205f9ecbd7

reference_id

633555735a023d3e4d92ba31da35b1205f9ecbd7

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/commit/633555735a023d3e4d92ba31da35b1205f9ecbd7

reference_url

https://github.com/python/cpython/commit/8450b2482586857d689b6658f08de9c8179af7db

reference_id

8450b2482586857d689b6658f08de9c8179af7db

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/commit/8450b2482586857d689b6658f08de9c8179af7db

reference_url

https://github.com/python/cpython/commit/9286ab3a107ea41bd3f3c3682ce2512692bdded8

reference_id

9286ab3a107ea41bd3f3c3682ce2512692bdded8

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/commit/9286ab3a107ea41bd3f3c3682ce2512692bdded8

reference_url

https://github.com/python/cpython/commit/ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97

reference_id

ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/commit/ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97

reference_url

https://github.com/python/cpython/commit/d48cc82ed25e26b02eb97c6263d95dcaa1e9111b

reference_id

d48cc82ed25e26b02eb97c6263d95dcaa1e9111b

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/commit/d48cc82ed25e26b02eb97c6263d95dcaa1e9111b

reference_url

https://github.com/python/cpython/commit/e52095a0c1005a87eed2276af7a1f2f66e2b6483

reference_id

e52095a0c1005a87eed2276af7a1f2f66e2b6483

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/commit/e52095a0c1005a87eed2276af7a1f2f66e2b6483

reference_url	https://access.redhat.com/errata/RHSA-2024:10779
reference_id	RHSA-2024:10779
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10779

reference_url	https://access.redhat.com/errata/RHSA-2024:10978
reference_id	RHSA-2024:10978
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10978

reference_url	https://access.redhat.com/errata/RHSA-2024:10979
reference_id	RHSA-2024:10979
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10979

reference_url	https://access.redhat.com/errata/RHSA-2024:10980
reference_id	RHSA-2024:10980
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10980

reference_url	https://access.redhat.com/errata/RHSA-2024:10983
reference_id	RHSA-2024:10983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10983

reference_url	https://access.redhat.com/errata/RHSA-2024:11024
reference_id	RHSA-2024:11024
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11024

reference_url	https://access.redhat.com/errata/RHSA-2024:11035
reference_id	RHSA-2024:11035
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11035

reference_url	https://access.redhat.com/errata/RHSA-2024:11111
reference_id	RHSA-2024:11111
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11111

reference_url	https://access.redhat.com/errata/RHSA-2025:0280
reference_id	RHSA-2025:0280
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0280

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/RSPJ2B5JL22FG3TKUJ7D7DQ4N5JRRBZL/

reference_id

RSPJ2B5JL22FG3TKUJ7D7DQ4N5JRRBZL

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/RSPJ2B5JL22FG3TKUJ7D7DQ4N5JRRBZL/

reference_url	https://usn.ubuntu.com/7116-1/
reference_id	USN-7116-1
reference_type
scores
url	https://usn.ubuntu.com/7116-1/

reference_url	https://usn.ubuntu.com/7348-1/
reference_id	USN-7348-1
reference_type
scores
url	https://usn.ubuntu.com/7348-1/

reference_url	https://usn.ubuntu.com/7488-1/
reference_id	USN-7488-1
reference_type
scores
url	https://usn.ubuntu.com/7488-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2024-9287

risk_score 2.9

exploitability 0.5

weighted_severity 5.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tbuw-2msj-tqd9

url VCID-tyk4-kazt-kydj

vulnerability_id VCID-tyk4-kazt-kydj

summary

Multiple vulnerabilities have been found in Python, the worst of
    which could result in a Denial of Service condition.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20907.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-20907.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-20907

reference_id

reference_type

scores

value	0.00323
scoring_system	epss
scoring_elements	0.55257
published_at	2026-04-01T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55355
published_at	2026-04-02T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.5538
published_at	2026-04-04T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55358
published_at	2026-04-07T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55408
published_at	2026-04-09T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55419
published_at	2026-04-11T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55397
published_at	2026-04-21T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55379
published_at	2026-04-13T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55414
published_at	2026-04-16T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55418
published_at	2026-04-18T12:55:00Z

value	0.00323
scoring_system	epss
scoring_elements	0.55336
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-20907

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20907
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20907

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1856481
reference_id	1856481
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1856481

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970099
reference_id	970099
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=970099

reference_url	https://security.gentoo.org/glsa/202008-01
reference_id	GLSA-202008-01
reference_type
scores
url	https://security.gentoo.org/glsa/202008-01

reference_url	https://access.redhat.com/errata/RHSA-2020:4273
reference_id	RHSA-2020:4273
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4273

reference_url	https://access.redhat.com/errata/RHSA-2020:4285
reference_id	RHSA-2020:4285
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4285

reference_url	https://access.redhat.com/errata/RHSA-2020:4299
reference_id	RHSA-2020:4299
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4299

reference_url	https://access.redhat.com/errata/RHSA-2020:4433
reference_id	RHSA-2020:4433
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4433

reference_url	https://access.redhat.com/errata/RHSA-2020:4641
reference_id	RHSA-2020:4641
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4641

reference_url	https://access.redhat.com/errata/RHSA-2020:4654
reference_id	RHSA-2020:4654
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:4654

reference_url	https://access.redhat.com/errata/RHSA-2020:5009
reference_id	RHSA-2020:5009
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5009

reference_url	https://access.redhat.com/errata/RHSA-2020:5010
reference_id	RHSA-2020:5010
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5010

reference_url	https://access.redhat.com/errata/RHSA-2021:0528
reference_id	RHSA-2021:0528
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0528

reference_url	https://access.redhat.com/errata/RHSA-2021:0761
reference_id	RHSA-2021:0761
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0761

reference_url	https://access.redhat.com/errata/RHSA-2021:0881
reference_id	RHSA-2021:0881
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0881

reference_url	https://access.redhat.com/errata/RHSA-2021:0949
reference_id	RHSA-2021:0949
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:0949

reference_url	https://usn.ubuntu.com/4428-1/
reference_id	USN-4428-1
reference_type
scores
url	https://usn.ubuntu.com/4428-1/

reference_url	https://usn.ubuntu.com/4754-3/
reference_id	USN-4754-3
reference_type
scores
url	https://usn.ubuntu.com/4754-3/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

fixed_packages

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29cz-9gkc-1bfx

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4gsg-5e6s-63g4

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-7ka5-7jrn-dber

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8hug-fhhb-sbgt

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-a8mv-mr3q-vygz

vulnerability	VCID-bqp2-x383-xqfh

vulnerability	VCID-dexx-3ssz-nqfg

vulnerability	VCID-e6rs-jwvu-jycd

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-h7z2-vc14-nfhq

vulnerability	VCID-js5p-py72-2kga

vulnerability	VCID-qqh6-evfk-1fgy

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-tbuw-2msj-tqd9

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2

aliases CVE-2019-20907

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tyk4-kazt-kydj

url VCID-v186-7sv1-ubej

vulnerability_id VCID-v186-7sv1-ubej

summary Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7592.json

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7592.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-7592

reference_id

reference_type

scores

value	0.00796
scoring_system	epss
scoring_elements	0.73941
published_at	2026-04-02T12:55:00Z

value	0.00796
scoring_system	epss
scoring_elements	0.73966
published_at	2026-04-04T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77258
published_at	2026-04-24T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77147
published_at	2026-04-07T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77179
published_at	2026-04-08T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77188
published_at	2026-04-09T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77215
published_at	2026-04-11T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77195
published_at	2026-04-12T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77191
published_at	2026-04-13T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77231
published_at	2026-04-16T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77233
published_at	2026-04-18T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77224
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-7592

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7592
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7592

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/123067

reference_id

123067

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/issues/123067

reference_url

https://github.com/python/cpython/pull/123075

reference_id

123075

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/pull/123075

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2305879
reference_id	2305879
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2305879

reference_url

https://github.com/python/cpython/commit/391e5626e3ee5af267b97e37abc7475732e67621

reference_id

391e5626e3ee5af267b97e37abc7475732e67621

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/391e5626e3ee5af267b97e37abc7475732e67621

reference_url

https://github.com/python/cpython/commit/44e458357fca05ca0ae2658d62c8c595b048b5ef

reference_id

44e458357fca05ca0ae2658d62c8c595b048b5ef

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/44e458357fca05ca0ae2658d62c8c595b048b5ef

reference_url

https://github.com/python/cpython/commit/a77ab24427a18bff817025adb03ca920dc3f1a06

reference_id

a77ab24427a18bff817025adb03ca920dc3f1a06

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/a77ab24427a18bff817025adb03ca920dc3f1a06

reference_url

https://github.com/python/cpython/commit/b2f11ca7667e4d57c71c1c88b255115f16042d9a

reference_id

b2f11ca7667e4d57c71c1c88b255115f16042d9a

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/b2f11ca7667e4d57c71c1c88b255115f16042d9a

reference_url

https://github.com/python/cpython/commit/d4ac921a4b081f7f996a5d2b101684b67ba0ed7f

reference_id

d4ac921a4b081f7f996a5d2b101684b67ba0ed7f

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/d4ac921a4b081f7f996a5d2b101684b67ba0ed7f

reference_url

https://github.com/python/cpython/commit/d662e2db2605515a767f88ad48096b8ac623c774

reference_id

d662e2db2605515a767f88ad48096b8ac623c774

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/d662e2db2605515a767f88ad48096b8ac623c774

reference_url

https://github.com/python/cpython/commit/dcc3eaef98cd94d6cb6cb0f44bd1c903d04f33b1

reference_id

dcc3eaef98cd94d6cb6cb0f44bd1c903d04f33b1

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/dcc3eaef98cd94d6cb6cb0f44bd1c903d04f33b1

reference_url	https://security.gentoo.org/glsa/202506-07
reference_id	GLSA-202506-07
reference_type
scores
url	https://security.gentoo.org/glsa/202506-07

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/HXJAAAALNUNGCQUS2W7WR6GFIZIHFOOK/

reference_id

HXJAAAALNUNGCQUS2W7WR6GFIZIHFOOK

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/HXJAAAALNUNGCQUS2W7WR6GFIZIHFOOK/

reference_url	https://access.redhat.com/errata/RHSA-2024:10983
reference_id	RHSA-2024:10983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10983

reference_url	https://access.redhat.com/errata/RHSA-2025:3631
reference_id	RHSA-2025:3631
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3631

reference_url	https://access.redhat.com/errata/RHSA-2025:3634
reference_id	RHSA-2025:3634
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3634

reference_url	https://usn.ubuntu.com/7015-1/
reference_id	USN-7015-1
reference_type
scores
url	https://usn.ubuntu.com/7015-1/

reference_url	https://usn.ubuntu.com/7015-2/
reference_id	USN-7015-2
reference_type
scores
url	https://usn.ubuntu.com/7015-2/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

url pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2

purl pkg:deb/debian/pypy3@7.3.19%2Bdfsg-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.19%252Bdfsg-2

aliases CVE-2024-7592

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v186-7sv1-ubej

url VCID-vpwj-d49q-1uh8

vulnerability_id VCID-vpwj-d49q-1uh8

summary Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0391.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-0391.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-0391

reference_id

reference_type

scores

value	0.01317
scoring_system	epss
scoring_elements	0.79807
published_at	2026-04-01T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.79886
published_at	2026-04-18T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.79815
published_at	2026-04-02T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.79918
published_at	2026-04-24T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.79889
published_at	2026-04-21T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.79835
published_at	2026-04-04T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.79823
published_at	2026-04-07T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.79852
published_at	2026-04-08T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.7986
published_at	2026-04-09T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.79882
published_at	2026-04-11T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.79865
published_at	2026-04-12T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.79857
published_at	2026-04-13T12:55:00Z

value	0.01317
scoring_system	epss
scoring_elements	0.79885
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-0391

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0391
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0391

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2047376
reference_id	2047376
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2047376

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CSD2YBXP3ZF44E44QMIIAR5VTO35KTRB/

reference_id

CSD2YBXP3ZF44E44QMIIAR5VTO35KTRB

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CSD2YBXP3ZF44E44QMIIAR5VTO35KTRB/

reference_url

https://bugs.python.org/issue43882

reference_id

issue43882

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/

url

https://bugs.python.org/issue43882

reference_url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_id

msg00022.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/

url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_url

https://security.netapp.com/advisory/ntap-20220225-0009/

reference_id

ntap-20220225-0009

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/

url

https://security.netapp.com/advisory/ntap-20220225-0009/

reference_url	https://access.redhat.com/errata/RHSA-2022:1663
reference_id	RHSA-2022:1663
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1663

reference_url	https://access.redhat.com/errata/RHSA-2022:1764
reference_id	RHSA-2022:1764
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1764

reference_url	https://access.redhat.com/errata/RHSA-2022:1821
reference_id	RHSA-2022:1821
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:1821

reference_url	https://access.redhat.com/errata/RHSA-2022:6457
reference_id	RHSA-2022:6457
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6457

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UDBDBAU6HUPZHISBOARTXZ5GKHF2VH5U/

reference_id

UDBDBAU6HUPZHISBOARTXZ5GKHF2VH5U

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T20:58:36Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UDBDBAU6HUPZHISBOARTXZ5GKHF2VH5U/

reference_url	https://usn.ubuntu.com/5342-1/
reference_id	USN-5342-1
reference_type
scores
url	https://usn.ubuntu.com/5342-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/USN-5342-2/
reference_id	USN-USN-5342-2
reference_type
scores
url	https://usn.ubuntu.com/USN-5342-2/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2022-0391

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-vpwj-d49q-1uh8

url VCID-w6k8-js68-87g4

vulnerability_id VCID-w6k8-js68-87g4

summary

Multiple vulnerabilities have been found in Python, the worst of
    which might allow attackers to access sensitive information.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23336.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23336.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-23336

reference_id

reference_type

scores

value	0.003
scoring_system	epss
scoring_elements	0.53342
published_at	2026-04-13T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53385
published_at	2026-04-18T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53379
published_at	2026-04-16T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53358
published_at	2026-04-12T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53374
published_at	2026-04-11T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53323
published_at	2026-04-09T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53329
published_at	2026-04-08T12:55:00Z

value	0.003
scoring_system	epss
scoring_elements	0.53276
published_at	2026-04-07T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54358
published_at	2026-04-21T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54251
published_at	2026-04-01T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54271
published_at	2026-04-02T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54301
published_at	2026-04-04T12:55:00Z

value	0.00311
scoring_system	epss
scoring_elements	0.54321
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-23336

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23336
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23336

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1928904
reference_id	1928904
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1928904

reference_url

https://github.com/python/cpython/pull/24297

reference_id

24297

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://github.com/python/cpython/pull/24297

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3EPYWWFDV22CJ5AOH5VCE72DOASZZ255/

reference_id

3EPYWWFDV22CJ5AOH5VCE72DOASZZ255

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3EPYWWFDV22CJ5AOH5VCE72DOASZZ255/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YKKDLXL3UEZ3J426C2XTBS63AHE46SM/

reference_id

3YKKDLXL3UEZ3J426C2XTBS63AHE46SM

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YKKDLXL3UEZ3J426C2XTBS63AHE46SM/

reference_url

http://www.openwall.com/lists/oss-security/2021/02/19/4

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

http://www.openwall.com/lists/oss-security/2021/02/19/4

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/46N6A52EGSXHJYCZWVMBJJIH4NWIV2B5/

reference_id

46N6A52EGSXHJYCZWVMBJJIH4NWIV2B5

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/46N6A52EGSXHJYCZWVMBJJIH4NWIV2B5/

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983090
reference_id	983090
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=983090

reference_url	https://security.archlinux.org/ASA-202102-28
reference_id	ASA-202102-28
reference_type
scores
url	https://security.archlinux.org/ASA-202102-28

reference_url	https://security.archlinux.org/ASA-202102-37
reference_id	ASA-202102-37
reference_type
scores
url	https://security.archlinux.org/ASA-202102-37

reference_url

https://security.archlinux.org/AVG-1465

reference_id

AVG-1465

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1465

reference_url

https://security.archlinux.org/AVG-1593

reference_id

AVG-1593

reference_type

scores

value	Medium
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1593

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2021-23336
reference_id	CVE-2021-23336
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2021-23336

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FONHJIOZOFD7CD35KZL6SVBUTMBPGZGA/

reference_id

FONHJIOZOFD7CD35KZL6SVBUTMBPGZGA

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FONHJIOZOFD7CD35KZL6SVBUTMBPGZGA/

reference_url

https://security.gentoo.org/glsa/202104-04

reference_id

GLSA-202104-04

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://security.gentoo.org/glsa/202104-04

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HCQTCSP6SCVIYNIRUJC5X7YBVUHPLSC4/

reference_id

HCQTCSP6SCVIYNIRUJC5X7YBVUHPLSC4

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HCQTCSP6SCVIYNIRUJC5X7YBVUHPLSC4/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HZTM7KLHFCE3LWSEVO2NAFLUHMGYMCRY/

reference_id

HZTM7KLHFCE3LWSEVO2NAFLUHMGYMCRY

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HZTM7KLHFCE3LWSEVO2NAFLUHMGYMCRY/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IHQDU7NXA7EWAE4W7VO6MURVJIULEPPR/

reference_id

IHQDU7NXA7EWAE4W7VO6MURVJIULEPPR

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IHQDU7NXA7EWAE4W7VO6MURVJIULEPPR/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJXCMHLY7H3FIYLE4OKDYUILU2CCRUCZ/

reference_id

KJXCMHLY7H3FIYLE4OKDYUILU2CCRUCZ

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KJXCMHLY7H3FIYLE4OKDYUILU2CCRUCZ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LVNH6Z24IG3E67ZCQGGJ46FZB4XFLQNZ/

reference_id

LVNH6Z24IG3E67ZCQGGJ46FZB4XFLQNZ

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LVNH6Z24IG3E67ZCQGGJ46FZB4XFLQNZ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MNUN5SOMFL2BBKP6ZAICIIUPQKZDMGYO/

reference_id

MNUN5SOMFL2BBKP6ZAICIIUPQKZDMGYO

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MNUN5SOMFL2BBKP6ZAICIIUPQKZDMGYO/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MP572OLHMS7MZO4KUPSCIMSZIA5IZZ62/

reference_id

MP572OLHMS7MZO4KUPSCIMSZIA5IZZ62

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MP572OLHMS7MZO4KUPSCIMSZIA5IZZ62/

reference_url

https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html

reference_id

msg00005.html

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.debian.org/debian-lts-announce/2021/04/msg00005.html

reference_url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_id

msg00022.html

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_url

https://lists.debian.org/debian-lts-announce/2021/02/msg00030.html

reference_id

msg00030.html

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.debian.org/debian-lts-announce/2021/02/msg00030.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/

reference_id

N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6VXJZSZ6N64AILJX4CTMACYGQGHHD5C/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NJSCSN722JO2E2AGPWD4NTGVELVRPB4R/

reference_id

NJSCSN722JO2E2AGPWD4NTGVELVRPB4R

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NJSCSN722JO2E2AGPWD4NTGVELVRPB4R/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NODWHDIFBQE5RU5PUWUVE47JOT5VCMJ2/

reference_id

NODWHDIFBQE5RU5PUWUVE47JOT5VCMJ2

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NODWHDIFBQE5RU5PUWUVE47JOT5VCMJ2/

reference_url

https://security.netapp.com/advisory/ntap-20210326-0004/

reference_id

ntap-20210326-0004

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://security.netapp.com/advisory/ntap-20210326-0004/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OAGSWNGZJ6HQ5ISA67SNMK3CJRKICET7/

reference_id

OAGSWNGZJ6HQ5ISA67SNMK3CJRKICET7

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OAGSWNGZJ6HQ5ISA67SNMK3CJRKICET7/

reference_url

https://lists.apache.org/thread.html/rc005f4de9d9b0ba943ceb8ff5a21a5c6ff8a9df52632476698d99432%40%3Cannounce.apache.org%3E

reference_id

rc005f4de9d9b0ba943ceb8ff5a21a5c6ff8a9df52632476698d99432%40%3Cannounce.apache.org%3E

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.apache.org/thread.html/rc005f4de9d9b0ba943ceb8ff5a21a5c6ff8a9df52632476698d99432%40%3Cannounce.apache.org%3E

reference_url	https://access.redhat.com/errata/RHSA-2021:1633
reference_id	RHSA-2021:1633
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1633

reference_url	https://access.redhat.com/errata/RHSA-2021:3252
reference_id	RHSA-2021:3252
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:3252

reference_url	https://access.redhat.com/errata/RHSA-2021:4151
reference_id	RHSA-2021:4151
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4151

reference_url	https://access.redhat.com/errata/RHSA-2021:4162
reference_id	RHSA-2021:4162
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:4162

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RSLQD5CCM75IZGAMBDGUZEATYU5YSGJ7/

reference_id

RSLQD5CCM75IZGAMBDGUZEATYU5YSGJ7

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RSLQD5CCM75IZGAMBDGUZEATYU5YSGJ7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGIY6I4YS3WOXAK4SXKIEOC2G4VZKIR7/

reference_id

SGIY6I4YS3WOXAK4SXKIEOC2G4VZKIR7

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SGIY6I4YS3WOXAK4SXKIEOC2G4VZKIR7/

reference_url

https://snyk.io/vuln/SNYK-UPSTREAM-PYTHONCPYTHON-1074933

reference_id

SNYK-UPSTREAM-PYTHONCPYTHON-1074933

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://snyk.io/vuln/SNYK-UPSTREAM-PYTHONCPYTHON-1074933

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TFTELUMWZE3KV3JB2H5EE6VFRZFRD5MV/

reference_id

TFTELUMWZE3KV3JB2H5EE6VFRZFRD5MV

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TFTELUMWZE3KV3JB2H5EE6VFRZFRD5MV/

reference_url	https://usn.ubuntu.com/4742-1/
reference_id	USN-4742-1
reference_type
scores
url	https://usn.ubuntu.com/4742-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W2LSKBEFI5SYEY5FM6ICZVZM5WRQUCS4/

reference_id

W2LSKBEFI5SYEY5FM6ICZVZM5WRQUCS4

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H/E:P/RL:U/RC:C

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:16:05Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W2LSKBEFI5SYEY5FM6ICZVZM5WRQUCS4/

fixed_packages

url pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

purl pkg:deb/debian/pypy3@7.3.5%2Bdfsg-2%2Bdeb11u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-29cz-9gkc-1bfx

vulnerability	VCID-2shb-2cvn-dyd2

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4gsg-5e6s-63g4

vulnerability	VCID-4z89-3tfk-pyge

vulnerability	VCID-7ka5-7jrn-dber

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8hug-fhhb-sbgt

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-a8mv-mr3q-vygz

vulnerability	VCID-bqp2-x383-xqfh

vulnerability	VCID-dexx-3ssz-nqfg

vulnerability	VCID-e6rs-jwvu-jycd

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-h7z2-vc14-nfhq

vulnerability	VCID-js5p-py72-2kga

vulnerability	VCID-qqh6-evfk-1fgy

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-tbuw-2msj-tqd9

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-vpwj-d49q-1uh8

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.5%252Bdfsg-2%252Bdeb11u2

aliases CVE-2021-23336

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w6k8-js68-87g4

url VCID-znkr-fxtj-4uc7

vulnerability_id VCID-znkr-fxtj-4uc7

summary cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8291.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-8291.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-8291

reference_id

reference_type

scores

value	0.00114
scoring_system	epss
scoring_elements	0.30092
published_at	2026-04-02T12:55:00Z

value	0.00114
scoring_system	epss
scoring_elements	0.29835
published_at	2026-04-24T12:55:00Z

value	0.00114
scoring_system	epss
scoring_elements	0.3014
published_at	2026-04-04T12:55:00Z

value	0.00114
scoring_system	epss
scoring_elements	0.29954
published_at	2026-04-07T12:55:00Z

value	0.00114
scoring_system	epss
scoring_elements	0.30015
published_at	2026-04-08T12:55:00Z

value	0.00114
scoring_system	epss
scoring_elements	0.30049
published_at	2026-04-09T12:55:00Z

value	0.00114
scoring_system	epss
scoring_elements	0.30055
published_at	2026-04-11T12:55:00Z

value	0.00114
scoring_system	epss
scoring_elements	0.3001
published_at	2026-04-12T12:55:00Z

value	0.00114
scoring_system	epss
scoring_elements	0.29961
published_at	2026-04-13T12:55:00Z

value	0.00114
scoring_system	epss
scoring_elements	0.29977
published_at	2026-04-16T12:55:00Z

value	0.00114
scoring_system	epss
scoring_elements	0.29956
published_at	2026-04-18T12:55:00Z

value	0.00114
scoring_system	epss
scoring_elements	0.2991
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-8291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-8291

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118431
reference_id	1118431
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118431

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118432
reference_id	1118432
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1118432

reference_url

https://github.com/python/cpython/issues/139700

reference_id

139700

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/

url

https://github.com/python/cpython/issues/139700

reference_url

https://github.com/python/cpython/pull/139702

reference_id

139702

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/

url

https://github.com/python/cpython/pull/139702

reference_url

https://github.com/python/cpython/commit/162997bb70e067668c039700141770687bc8f267

reference_id

162997bb70e067668c039700141770687bc8f267

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/

url

https://github.com/python/cpython/commit/162997bb70e067668c039700141770687bc8f267

reference_url

https://github.com/python/cpython/commit/1d29afb0d6218aa8fb5e1e4a6133a4778d89bb46

reference_id

1d29afb0d6218aa8fb5e1e4a6133a4778d89bb46

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/

url

https://github.com/python/cpython/commit/1d29afb0d6218aa8fb5e1e4a6133a4778d89bb46

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2402342
reference_id	2402342
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2402342

reference_url

https://github.com/python/cpython/commit/333d4a6f4967d3ace91492a39ededbcf3faa76a6

reference_id

333d4a6f4967d3ace91492a39ededbcf3faa76a6

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/

url

https://github.com/python/cpython/commit/333d4a6f4967d3ace91492a39ededbcf3faa76a6

reference_url

https://github.com/python/cpython/commit/76437ac248ad8ca44e9bf697b02b1e2241df2196

reference_id

76437ac248ad8ca44e9bf697b02b1e2241df2196

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/

url

https://github.com/python/cpython/commit/76437ac248ad8ca44e9bf697b02b1e2241df2196

reference_url

https://github.com/python/cpython/commit/8392b2f0d35678407d9ce7d95655a5b77de161b4

reference_id

8392b2f0d35678407d9ce7d95655a5b77de161b4

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/

url

https://github.com/python/cpython/commit/8392b2f0d35678407d9ce7d95655a5b77de161b4

reference_url

https://github.com/python/cpython/commit/bca11ae7d575d87ed93f5dd6a313be6246e3e388

reference_id

bca11ae7d575d87ed93f5dd6a313be6246e3e388

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/

url

https://github.com/python/cpython/commit/bca11ae7d575d87ed93f5dd6a313be6246e3e388

reference_url

https://github.com/python/cpython/commit/d11e69d6203080e3ec450446bfed0516727b85c3

reference_id

d11e69d6203080e3ec450446bfed0516727b85c3

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/

url

https://github.com/python/cpython/commit/d11e69d6203080e3ec450446bfed0516727b85c3

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/QECOPWMTH4VPPJAXAH2BGTA4XADOP62G/

reference_id

QECOPWMTH4VPPJAXAH2BGTA4XADOP62G

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-29T15:15:06Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/QECOPWMTH4VPPJAXAH2BGTA4XADOP62G/

reference_url	https://access.redhat.com/errata/RHSA-2025:23323
reference_id	RHSA-2025:23323
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23323

reference_url	https://access.redhat.com/errata/RHSA-2025:23342
reference_id	RHSA-2025:23342
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23342

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url	https://access.redhat.com/errata/RHSA-2025:23940
reference_id	RHSA-2025:23940
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23940

reference_url	https://access.redhat.com/errata/RHSA-2026:0123
reference_id	RHSA-2026:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0123

reference_url	https://access.redhat.com/errata/RHSA-2026:0353
reference_id	RHSA-2026:0353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0353

reference_url	https://access.redhat.com/errata/RHSA-2026:0354
reference_id	RHSA-2026:0354
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0354

reference_url	https://access.redhat.com/errata/RHSA-2026:0355
reference_id	RHSA-2026:0355
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0355

reference_url	https://access.redhat.com/errata/RHSA-2026:0414
reference_id	RHSA-2026:0414
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0414

reference_url	https://access.redhat.com/errata/RHSA-2026:0685
reference_id	RHSA-2026:0685
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0685

reference_url	https://access.redhat.com/errata/RHSA-2026:1652
reference_id	RHSA-2026:1652
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1652

reference_url	https://access.redhat.com/errata/RHSA-2026:1858
reference_id	RHSA-2026:1858
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1858

reference_url	https://access.redhat.com/errata/RHSA-2026:7443
reference_id	RHSA-2026:7443
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7443

reference_url	https://access.redhat.com/errata/RHSA-2026:7661
reference_id	RHSA-2026:7661
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7661

reference_url	https://access.redhat.com/errata/RHSA-2026:8822
reference_id	RHSA-2026:8822
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8822

reference_url	https://access.redhat.com/errata/RHSA-2026:8824
reference_id	RHSA-2026:8824
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8824

reference_url	https://usn.ubuntu.com/7886-1/
reference_id	USN-7886-1
reference_type
scores
url	https://usn.ubuntu.com/7886-1/

reference_url	https://usn.ubuntu.com/7886-2/
reference_id	USN-7886-2
reference_type
scores
url	https://usn.ubuntu.com/7886-2/

fixed_packages

url pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

purl pkg:deb/debian/pypy3@7.3.11%2Bdfsg-2%2Bdeb12u3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hw3-vhwb-nkcd

vulnerability	VCID-2v5u-2z4w-ffgx

vulnerability	VCID-4afh-28ss-mudf

vulnerability	VCID-757r-fs6p-qqdd

vulnerability	VCID-7s7y-9bw5-m3ep

vulnerability	VCID-8dtv-379a-wqfs

vulnerability	VCID-8zdt-4q7m-t7ht

vulnerability	VCID-9nvp-aus1-9yed

vulnerability	VCID-9sms-mhht-n3aq

vulnerability	VCID-dnv8-yrd6-c7cv

vulnerability	VCID-e6sb-bh7v-9ugg

vulnerability	VCID-emaw-jmek-9bcy

vulnerability	VCID-q6g1-cjz3-77e4

vulnerability	VCID-qwhz-912b-8kh5

vulnerability	VCID-smck-sdx2-c7du

vulnerability	VCID-v186-7sv1-ubej

vulnerability	VCID-znkr-fxtj-4uc7

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.3.11%252Bdfsg-2%252Bdeb12u3

aliases CVE-2025-8291

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-znkr-fxtj-4uc7

Fixing_vulnerabilities

Risk_score 4.5

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/pypy3@7.0.0%252Bdfsg-3

Package Instance