Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/1066833?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "type": "deb", "namespace": "debian", "name": "mariadb", "version": "1:11.8.6-6", "qualifiers": { "distro": "trixie" }, "subpath": "", "is_vulnerable": false, "next_non_vulnerable_version": null, "latest_non_vulnerable_version": null, "affected_by_vulnerabilities": [], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70816?format=api", "vulnerability_id": "VCID-3tgc-def7-zufy", "summary": "mariadb: MariaDB Server Crash", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52971.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52971.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-52971", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.1568", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15595", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.0005", "scoring_system": "epss", "scoring_elements": "0.15739", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19326", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19524", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19477", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19269", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19375", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00069", "scoring_system": "epss", "scoring_elements": "0.21263", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00076", "scoring_system": "epss", "scoring_elements": "0.22777", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00085", "scoring_system": "epss", "scoring_elements": "0.24571", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-52971" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1100437", "reference_id": "1100437", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1100437" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2350917", "reference_id": "2350917", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2350917" }, { "reference_url": "https://jira.mariadb.org/browse/MDEV-32084", "reference_id": "MDEV-32084", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T14:51:07Z/" } ], "url": "https://jira.mariadb.org/browse/MDEV-32084" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0136", "reference_id": "RHSA-2026:0136", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0136" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0247", "reference_id": "RHSA-2026:0247", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0247" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0334", "reference_id": "RHSA-2026:0334", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0334" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0335", "reference_id": "RHSA-2026:0335", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0335" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0376", "reference_id": "RHSA-2026:0376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6435", "reference_id": "RHSA-2026:6435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6435" }, { "reference_url": "https://usn.ubuntu.com/7548-1/", "reference_id": "USN-7548-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7548-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930440?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.13-0%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.13-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930433?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.14-0%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-sawk-emag-1ygs" }, { "vulnerability": "VCID-ttzx-uwaj-8uek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.14-0%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930441?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-52971" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3tgc-def7-zufy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70815?format=api", "vulnerability_id": "VCID-45ah-27q3-tbbh", "summary": "mariadb: MariaDB Server Crash Due to Empty Backtrace Log", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52969.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52969.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-52969", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40568", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40517", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40578", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43376", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43348", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00244", "scoring_system": "epss", "scoring_elements": "0.47707", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00244", "scoring_system": "epss", "scoring_elements": "0.47684", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00244", "scoring_system": "epss", "scoring_elements": "0.47693", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00337", "scoring_system": "epss", "scoring_elements": "0.56569", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00337", "scoring_system": "epss", "scoring_elements": "0.56598", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00397", "scoring_system": "epss", "scoring_elements": "0.60574", "published_at": "2026-04-16T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-52969" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52969", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52969" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1100437", "reference_id": "1100437", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1100437" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2350916", "reference_id": "2350916", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2350916" }, { "reference_url": "https://jira.mariadb.org/browse/MDEV-32083", "reference_id": "MDEV-32083", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T15:57:59Z/" } ], "url": "https://jira.mariadb.org/browse/MDEV-32083" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19572", "reference_id": "RHSA-2025:19572", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19572" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19584", "reference_id": "RHSA-2025:19584", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19584" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0136", "reference_id": "RHSA-2026:0136", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0136" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0247", "reference_id": "RHSA-2026:0247", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0247" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0334", "reference_id": "RHSA-2026:0334", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0334" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0335", "reference_id": "RHSA-2026:0335", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0335" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0376", "reference_id": "RHSA-2026:0376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6435", "reference_id": "RHSA-2026:6435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6435" }, { "reference_url": "https://usn.ubuntu.com/7519-1/", "reference_id": "USN-7519-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7519-1/" }, { "reference_url": "https://usn.ubuntu.com/7548-1/", "reference_id": "USN-7548-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7548-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930440?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.13-0%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.13-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930433?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.14-0%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-sawk-emag-1ygs" }, { "vulnerability": "VCID-ttzx-uwaj-8uek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.14-0%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930441?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-52969" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-45ah-27q3-tbbh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/78013?format=api", "vulnerability_id": "VCID-6atg-7j6k-dkhp", "summary": "mysql: InnoDB unspecified vulnerability (CPU Oct 2023)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-22084.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-22084.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-22084", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01362", "scoring_system": "epss", "scoring_elements": "0.8013", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.01362", "scoring_system": "epss", "scoring_elements": "0.8015", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.01362", "scoring_system": "epss", "scoring_elements": "0.80138", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.01362", "scoring_system": "epss", "scoring_elements": "0.80167", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.01362", "scoring_system": "epss", "scoring_elements": "0.80174", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.01362", "scoring_system": "epss", "scoring_elements": "0.80193", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.01362", "scoring_system": "epss", "scoring_elements": "0.80178", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.01362", "scoring_system": "epss", "scoring_elements": "0.80169", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.01362", "scoring_system": "epss", "scoring_elements": "0.80198", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.01362", "scoring_system": "epss", "scoring_elements": "0.802", "published_at": "2026-04-21T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-22084" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22084", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22084" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055034", "reference_id": "1055034", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1055034" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245023", "reference_id": "2245023", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2245023" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0894", "reference_id": "RHSA-2024:0894", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0894" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1141", "reference_id": "RHSA-2024:1141", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:1141" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2619", "reference_id": "RHSA-2024:2619", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2619" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:0739", "reference_id": "RHSA-2025:0739", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:0739" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:0914", "reference_id": "RHSA-2025:0914", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:0914" }, { "reference_url": "https://usn.ubuntu.com/6459-1/", "reference_id": "USN-6459-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6459-1/" }, { "reference_url": "https://usn.ubuntu.com/6583-1/", "reference_id": "USN-6583-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6583-1/" }, { "reference_url": "https://usn.ubuntu.com/6600-1/", "reference_id": "USN-6600-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6600-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930437?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.6-0%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.6-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930438?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930433?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.14-0%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-sawk-emag-1ygs" }, { "vulnerability": "VCID-ttzx-uwaj-8uek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.14-0%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-22084" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6atg-7j6k-dkhp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/349435?format=api", "vulnerability_id": "VCID-6c2s-4j9m-u7ed", "summary": "", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-35549.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-35549.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-35549", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14549", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14587", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14626", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14516", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14522", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14357", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14441", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14758", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.14718", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00047", "scoring_system": "epss", "scoring_elements": "0.1468", "published_at": "2026-04-12T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-35549" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2454731", "reference_id": "2454731", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2454731" }, { "reference_url": "https://jira.mariadb.org/browse/MDEV-38365", "reference_id": "MDEV-38365", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-03T14:33:50Z/" } ], "url": "https://jira.mariadb.org/browse/MDEV-38365" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930439?format=api", "purl": "pkg:deb/debian/mariadb@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930433?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.14-0%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-sawk-emag-1ygs" }, { "vulnerability": "VCID-ttzx-uwaj-8uek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.14-0%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930447?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-35549" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6c2s-4j9m-u7ed" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70817?format=api", "vulnerability_id": "VCID-7awt-vh1g-3fdj", "summary": "mariadb: MariaDB Server Crash via Item_direct_view_ref", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52970.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52970.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-52970", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40568", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40517", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00187", "scoring_system": "epss", "scoring_elements": "0.40578", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43376", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43348", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00244", "scoring_system": "epss", "scoring_elements": "0.47707", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00244", "scoring_system": "epss", "scoring_elements": "0.47693", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00244", "scoring_system": "epss", "scoring_elements": "0.47684", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00254", "scoring_system": "epss", "scoring_elements": "0.48738", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00337", "scoring_system": "epss", "scoring_elements": "0.56569", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00337", "scoring_system": "epss", "scoring_elements": "0.56598", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-52970" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52970", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52970" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1100437", "reference_id": "1100437", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1100437" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2350918", "reference_id": "2350918", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2350918" }, { "reference_url": "https://jira.mariadb.org/browse/MDEV-32086", "reference_id": "MDEV-32086", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T14:51:41Z/" } ], "url": "https://jira.mariadb.org/browse/MDEV-32086" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19572", "reference_id": "RHSA-2025:19572", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19572" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19584", "reference_id": "RHSA-2025:19584", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19584" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0136", "reference_id": "RHSA-2026:0136", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0136" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0247", "reference_id": "RHSA-2026:0247", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0247" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0334", "reference_id": "RHSA-2026:0334", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0334" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0335", "reference_id": "RHSA-2026:0335", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0335" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0376", "reference_id": "RHSA-2026:0376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6435", "reference_id": "RHSA-2026:6435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6435" }, { "reference_url": "https://usn.ubuntu.com/7519-1/", "reference_id": "USN-7519-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7519-1/" }, { "reference_url": "https://usn.ubuntu.com/7548-1/", "reference_id": "USN-7548-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7548-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930440?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.13-0%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.13-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930433?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.14-0%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-sawk-emag-1ygs" }, { "vulnerability": "VCID-ttzx-uwaj-8uek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.14-0%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930441?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-52970" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7awt-vh1g-3fdj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70374?format=api", "vulnerability_id": "VCID-9c35-pmbb-efe9", "summary": "mysql: mariadb: InnoDB unspecified vulnerability (CPU Apr 2025)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-30693.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-30693.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-30693", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51469", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51415", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00281", "scoring_system": "epss", "scoring_elements": "0.51467", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00366", "scoring_system": "epss", "scoring_elements": "0.58622", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00366", "scoring_system": "epss", "scoring_elements": "0.58584", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00366", "scoring_system": "epss", "scoring_elements": "0.58627", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00366", "scoring_system": "epss", "scoring_elements": "0.58563", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00366", "scoring_system": "epss", "scoring_elements": "0.58605", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00366", "scoring_system": "epss", "scoring_elements": "0.58628", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00366", "scoring_system": "epss", "scoring_elements": "0.58609", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00366", "scoring_system": "epss", "scoring_elements": "0.58589", "published_at": "2026-04-13T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-30693" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-30693", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-30693" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103385", "reference_id": "1103385", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103385" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105976", "reference_id": "1105976", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105976" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2359963", "reference_id": "2359963", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2359963" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2025.html", "reference_id": "cpuapr2025.html", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-16T14:23:08Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2025.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:15699", "reference_id": "RHSA-2025:15699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:15699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:16046", "reference_id": "RHSA-2025:16046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:16046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:16086", "reference_id": "RHSA-2025:16086", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:16086" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:16861", "reference_id": "RHSA-2025:16861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:16861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19572", "reference_id": "RHSA-2025:19572", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19572" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19584", "reference_id": "RHSA-2025:19584", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19584" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0136", "reference_id": "RHSA-2026:0136", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0136" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0247", "reference_id": "RHSA-2026:0247", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0247" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0334", "reference_id": "RHSA-2026:0334", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0334" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0335", "reference_id": "RHSA-2026:0335", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0335" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0376", "reference_id": "RHSA-2026:0376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6435", "reference_id": "RHSA-2026:6435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6435" }, { "reference_url": "https://usn.ubuntu.com/7479-1/", "reference_id": "USN-7479-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7479-1/" }, { "reference_url": "https://usn.ubuntu.com/7519-1/", "reference_id": "USN-7519-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7519-1/" }, { "reference_url": "https://usn.ubuntu.com/7548-1/", "reference_id": "USN-7548-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7548-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930440?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.13-0%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.13-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930433?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.14-0%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-sawk-emag-1ygs" }, { "vulnerability": "VCID-ttzx-uwaj-8uek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.14-0%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930441?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-30693" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9c35-pmbb-efe9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70364?format=api", "vulnerability_id": "VCID-a732-u6ue-57h5", "summary": "mysql: mariadb: mysqldump unspecified vulnerability (CPU Apr 2025)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-30722.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-30722.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-30722", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56629", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56649", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.5665", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56693", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56668", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56647", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56678", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00338", "scoring_system": "epss", "scoring_elements": "0.56677", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57084", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57134", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57136", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-30722" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-30722", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-30722" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103385", "reference_id": "1103385", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1103385" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105976", "reference_id": "1105976", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1105976" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2359885", "reference_id": "2359885", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2359885" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2025.html", "reference_id": "cpuapr2025.html", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-17T13:37:19Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2025.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:15699", "reference_id": "RHSA-2025:15699", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:15699" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:16046", "reference_id": "RHSA-2025:16046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:16046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:16086", "reference_id": "RHSA-2025:16086", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:16086" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:16861", "reference_id": "RHSA-2025:16861", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:16861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19572", "reference_id": "RHSA-2025:19572", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19572" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19584", "reference_id": "RHSA-2025:19584", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19584" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0136", "reference_id": "RHSA-2026:0136", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0136" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0247", "reference_id": "RHSA-2026:0247", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0247" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0334", "reference_id": "RHSA-2026:0334", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0334" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0335", "reference_id": "RHSA-2026:0335", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0335" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0376", "reference_id": "RHSA-2026:0376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6435", "reference_id": "RHSA-2026:6435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6435" }, { "reference_url": "https://usn.ubuntu.com/7479-1/", "reference_id": "USN-7479-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7479-1/" }, { "reference_url": "https://usn.ubuntu.com/7519-1/", "reference_id": "USN-7519-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7519-1/" }, { "reference_url": "https://usn.ubuntu.com/7548-1/", "reference_id": "USN-7548-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7548-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930440?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.13-0%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.13-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930433?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.14-0%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-sawk-emag-1ygs" }, { "vulnerability": "VCID-ttzx-uwaj-8uek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.14-0%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930441?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.2-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.2-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-30722" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a732-u6ue-57h5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/61756?format=api", "vulnerability_id": "VCID-c45y-pbjr-73ez", "summary": "Multiple vulnerabilities have been discovered in MariaDB, the worst fo which can lead to arbitrary execution of code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-47015.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-47015.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-47015", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44719", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44695", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44739", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44677", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.4473", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44732", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44749", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44717", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44718", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44773", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00221", "scoring_system": "epss", "scoring_elements": "0.44765", "published_at": "2026-04-18T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-47015" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47015", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-47015" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "1.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034889", "reference_id": "1034889", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1034889" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2163609", "reference_id": "2163609", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2163609" }, { "reference_url": "https://github.com/MariaDB/server/commit/be0a46b3d52b58956fd0d47d040b9f4514406954", "reference_id": "be0a46b3d52b58956fd0d47d040b9f4514406954", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T15:56:02Z/" } ], "url": "https://github.com/MariaDB/server/commit/be0a46b3d52b58956fd0d47d040b9f4514406954" }, { "reference_url": "https://security.gentoo.org/glsa/202405-25", "reference_id": "GLSA-202405-25", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202405-25" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00005.html", "reference_id": "msg00005.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T15:56:02Z/" } ], "url": "https://lists.debian.org/debian-lts-announce/2023/06/msg00005.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20230309-0009/", "reference_id": "ntap-20230309-0009", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T15:56:02Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20230309-0009/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O22PO3Q6TRSNJI2A2WTJH3VVCHEKBF6C/", "reference_id": "O22PO3Q6TRSNJI2A2WTJH3VVCHEKBF6C", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T15:56:02Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O22PO3Q6TRSNJI2A2WTJH3VVCHEKBF6C/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5259", "reference_id": "RHSA-2023:5259", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5259" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5683", "reference_id": "RHSA-2023:5683", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5683" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:5684", "reference_id": "RHSA-2023:5684", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:5684" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6821", "reference_id": "RHSA-2023:6821", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6821" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6822", "reference_id": "RHSA-2023:6822", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6822" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6883", "reference_id": "RHSA-2023:6883", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6883" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7633", "reference_id": "RHSA-2023:7633", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7633" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SUQ33SPQCZQD63TWAM3XKFNVNFRGPFYU/", "reference_id": "SUQ33SPQCZQD63TWAM3XKFNVNFRGPFYU", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-03T15:56:02Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SUQ33SPQCZQD63TWAM3XKFNVNFRGPFYU/" }, { "reference_url": "https://usn.ubuntu.com/6600-1/", "reference_id": "USN-6600-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6600-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930434?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.3-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.3-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930433?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.14-0%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-sawk-emag-1ygs" }, { "vulnerability": "VCID-ttzx-uwaj-8uek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.14-0%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2022-47015" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-c45y-pbjr-73ez" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/76869?format=api", "vulnerability_id": "VCID-dxbv-e8pq-p7ew", "summary": "mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21096.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21096.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-21096", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31104", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31301", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31121", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31174", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31205", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.3121", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31167", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31123", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31156", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31136", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00121", "scoring_system": "epss", "scoring_elements": "0.31259", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-21096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21096" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069189", "reference_id": "1069189", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069189" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275452", "reference_id": "2275452", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275452" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CKWVBZ6DBRFMLDXTHJUZ6LU7MJ5RTNA7/", "reference_id": "CKWVBZ6DBRFMLDXTHJUZ6LU7MJ5RTNA7", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-30T15:34:09Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CKWVBZ6DBRFMLDXTHJUZ6LU7MJ5RTNA7/" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server:8.0.36_and_prior:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:oracle:mysql_server:8.0.36_and_prior:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server:8.0.36_and_prior:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server:8.3.0_and_prior:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:oracle:mysql_server:8.3.0_and_prior:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server:8.3.0_and_prior:*:*:*:*:*:*:*" }, { "reference_url": "https://www.oracle.com/security-alerts/cpuapr2024.html", "reference_id": "cpuapr2024.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-30T15:34:09Z/" } ], "url": "https://www.oracle.com/security-alerts/cpuapr2024.html" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KFYBDWDBE4YICSV34LJZGYRVSG6QIRKE/", "reference_id": "KFYBDWDBE4YICSV34LJZGYRVSG6QIRKE", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-30T15:34:09Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KFYBDWDBE4YICSV34LJZGYRVSG6QIRKE/" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20240426-0013/", "reference_id": "ntap-20240426-0013", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-05-30T15:34:09Z/" } ], "url": "https://security.netapp.com/advisory/ntap-20240426-0013/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:0737", "reference_id": "RHSA-2025:0737", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:0737" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:0739", "reference_id": "RHSA-2025:0739", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:0739" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:0912", "reference_id": "RHSA-2025:0912", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:0912" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:0914", "reference_id": "RHSA-2025:0914", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:0914" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0335", "reference_id": "RHSA-2026:0335", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0335" }, { "reference_url": "https://usn.ubuntu.com/6823-1/", "reference_id": "USN-6823-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6823-1/" }, { "reference_url": "https://usn.ubuntu.com/6839-1/", "reference_id": "USN-6839-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6839-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930443?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.8-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.8-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930442?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.11-0%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.11-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930433?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.14-0%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-sawk-emag-1ygs" }, { "vulnerability": "VCID-ttzx-uwaj-8uek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.14-0%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2024-21096" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dxbv-e8pq-p7ew" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/64139?format=api", "vulnerability_id": "VCID-f41w-atkk-a3e7", "summary": "MariaDB: MariaDB: Remote Code Execution or Denial of Service via JSON_SCHEMA_VALID() function vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32710.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-32710.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-32710", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26905", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43318", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43371", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43339", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43324", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43385", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43374", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43346", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43284", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.43336", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00209", "scoring_system": "epss", "scoring_elements": "0.4335", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-32710" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449711", "reference_id": "2449711", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449711" }, { "reference_url": "https://github.com/MariaDB/server/security/advisories/GHSA-4rj5-2227-9wgc", "reference_id": "GHSA-4rj5-2227-9wgc", "reference_type": "", "scores": [ { "value": "8.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-20T21:25:17Z/" } ], "url": "https://github.com/MariaDB/server/security/advisories/GHSA-4rj5-2227-9wgc" }, { "reference_url": "https://jira.mariadb.org/browse/MDEV-38356", "reference_id": "MDEV-38356", "reference_type": "", "scores": [ { "value": "8.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-20T21:25:17Z/" } ], "url": "https://jira.mariadb.org/browse/MDEV-38356" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930439?format=api", "purl": "pkg:deb/debian/mariadb@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930433?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.14-0%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-sawk-emag-1ygs" }, { "vulnerability": "VCID-ttzx-uwaj-8uek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.14-0%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930447?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-32710" ], "risk_score": null, "exploitability": null, "weighted_severity": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f41w-atkk-a3e7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70814?format=api", "vulnerability_id": "VCID-jed2-gwqr-zbed", "summary": "mariadb: Crash in MariaDB Due to Improper Handling of Derived Tables", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52968.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52968.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-52968", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05305", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.0002", "scoring_system": "epss", "scoring_elements": "0.05153", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00024", "scoring_system": "epss", "scoring_elements": "0.06339", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27692", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27483", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27551", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27594", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27598", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27554", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27497", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00099", "scoring_system": "epss", "scoring_elements": "0.27654", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-52968" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52968", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52968" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2350915", "reference_id": "2350915", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2350915" }, { "reference_url": "https://jira.mariadb.org/browse/MDEV-32082", "reference_id": "MDEV-32082", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-03-10T15:58:35Z/" } ], "url": "https://jira.mariadb.org/browse/MDEV-32082" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930439?format=api", "purl": "pkg:deb/debian/mariadb@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930433?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.14-0%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-sawk-emag-1ygs" }, { "vulnerability": "VCID-ttzx-uwaj-8uek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.14-0%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2023-52968" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jed2-gwqr-zbed" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/71988?format=api", "vulnerability_id": "VCID-jpqr-hknn-6fd9", "summary": "mysql: mariadb: High Privilege Denial of Service Vulnerability in MySQL Server (CPU Jan 2025)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-21490.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-21490.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-21490", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00297", "scoring_system": "epss", "scoring_elements": "0.53099", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00297", "scoring_system": "epss", "scoring_elements": "0.53082", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00349", "scoring_system": "epss", "scoring_elements": "0.57453", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00349", "scoring_system": "epss", "scoring_elements": "0.57478", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00349", "scoring_system": "epss", "scoring_elements": "0.57474", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00392", "scoring_system": "epss", "scoring_elements": "0.60175", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00392", "scoring_system": "epss", "scoring_elements": "0.60225", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00392", "scoring_system": "epss", "scoring_elements": "0.6024", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00403", "scoring_system": "epss", "scoring_elements": "0.60941", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.0045", "scoring_system": "epss", "scoring_elements": "0.63619", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.0045", "scoring_system": "epss", "scoring_elements": "0.63593", "published_at": "2026-04-02T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-21490" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-21490", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-21490" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1093877", "reference_id": "1093877", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1093877" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2339221", "reference_id": "2339221", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2339221" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server:8.0.40_and_prior:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:oracle:mysql_server:8.0.40_and_prior:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server:8.0.40_and_prior:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server:8.4.3_and_prior:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:oracle:mysql_server:8.4.3_and_prior:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server:8.4.3_and_prior:*:*:*:*:*:*:*" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server:9.1.0_and_prior:*:*:*:*:*:*:*", "reference_id": "cpe:2.3:a:oracle:mysql_server:9.1.0_and_prior:*:*:*:*:*:*:*", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:oracle:mysql_server:9.1.0_and_prior:*:*:*:*:*:*:*" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2025.html", "reference_id": "cpujan2025.html", "reference_type": "", "scores": [ { "value": "4.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-23T19:32:41Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2025.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:1671", "reference_id": "RHSA-2025:1671", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:1671" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:1673", "reference_id": "RHSA-2025:1673", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:1673" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19572", "reference_id": "RHSA-2025:19572", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19572" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19584", "reference_id": "RHSA-2025:19584", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:19584" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0247", "reference_id": "RHSA-2026:0247", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0247" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0334", "reference_id": "RHSA-2026:0334", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0334" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0335", "reference_id": "RHSA-2026:0335", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0335" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6435", "reference_id": "RHSA-2026:6435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6435" }, { "reference_url": "https://usn.ubuntu.com/7245-1/", "reference_id": "USN-7245-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7245-1/" }, { "reference_url": "https://usn.ubuntu.com/7376-1/", "reference_id": "USN-7376-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7376-1/" }, { "reference_url": "https://usn.ubuntu.com/7376-2/", "reference_id": "USN-7376-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7376-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930442?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.11-0%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.11-0%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930433?format=api", "purl": "pkg:deb/debian/mariadb@1:10.11.14-0%2Bdeb12u2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-sawk-emag-1ygs" }, { "vulnerability": "VCID-ttzx-uwaj-8uek" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:10.11.14-0%252Bdeb12u2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930446?format=api", "purl": "pkg:deb/debian/mariadb@1:11.4.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.4.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-21490" ], "risk_score": 2.2, "exploitability": "0.5", "weighted_severity": "4.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jpqr-hknn-6fd9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/64967?format=api", "vulnerability_id": "VCID-sawk-emag-1ygs", "summary": "mysql: Optimizer unspecified vulnerability (CPU Jan 2026)", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21968.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-21968.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2026-21968", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20576", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20411", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20479", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20424", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20414", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20634", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20361", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20443", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.205", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.00066", "scoring_system": "epss", "scoring_elements": "0.20523", "published_at": "2026-04-11T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2026-21968" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126115", "reference_id": "1126115", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126115" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431409", "reference_id": "2431409", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2431409" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2026.html", "reference_id": "cpujan2026.html", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-21T19:20:23Z/" } ], "url": "https://www.oracle.com/security-alerts/cpujan2026.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0136", "reference_id": "RHSA-2026:0136", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0136" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0247", "reference_id": "RHSA-2026:0247", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0247" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0334", "reference_id": "RHSA-2026:0334", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0334" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0335", "reference_id": "RHSA-2026:0335", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0335" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0376", "reference_id": "RHSA-2026:0376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4162", "reference_id": "RHSA-2026:4162", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4162" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:4828", "reference_id": "RHSA-2026:4828", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:4828" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5580", "reference_id": "RHSA-2026:5580", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5580" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:5640", "reference_id": "RHSA-2026:5640", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:5640" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6391", "reference_id": "RHSA-2026:6391", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6391" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:6435", "reference_id": "RHSA-2026:6435", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:6435" }, { "reference_url": "https://usn.ubuntu.com/7994-1/", "reference_id": "USN-7994-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7994-1/" }, { "reference_url": "https://usn.ubuntu.com/8006-1/", "reference_id": "USN-8006-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/8006-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930445?format=api", "purl": "pkg:deb/debian/mariadb@11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930444?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2026-21968" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sawk-emag-1ygs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/66421?format=api", "vulnerability_id": "VCID-ttzx-uwaj-8uek", "summary": "mariadb: MariaDB: mariadb-dump utility vulnerable to remote code execution via improper path validation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13699.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.0", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13699.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-13699", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36247", "published_at": "2026-04-21T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36315", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.00155", "scoring_system": "epss", "scoring_elements": "0.36299", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.00211", "scoring_system": "epss", "scoring_elements": "0.43629", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.00211", "scoring_system": "epss", "scoring_elements": "0.43666", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.00211", "scoring_system": "epss", "scoring_elements": "0.43635", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.00211", "scoring_system": "epss", "scoring_elements": "0.43617", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.00211", "scoring_system": "epss", "scoring_elements": "0.43654", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.00211", "scoring_system": "epss", "scoring_elements": "0.43591", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.00211", "scoring_system": "epss", "scoring_elements": "0.43642", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.00211", "scoring_system": "epss", "scoring_elements": "0.43647", "published_at": "2026-04-09T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-13699" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13699", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13699" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2417693", "reference_id": "2417693", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2417693" }, { "reference_url": "https://jira.mariadb.org/browse/MDEV-37483", "reference_id": "MDEV-37483", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-24T16:10:37Z/" } ], "url": "https://jira.mariadb.org/browse/MDEV-37483" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0061", "reference_id": "RHSA-2026:0061", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0061" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0111", "reference_id": "RHSA-2026:0111", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0111" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0112", "reference_id": "RHSA-2026:0112", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0112" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0136", "reference_id": "RHSA-2026:0136", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0136" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0137", "reference_id": "RHSA-2026:0137", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0137" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0225", "reference_id": "RHSA-2026:0225", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0225" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0232", "reference_id": "RHSA-2026:0232", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0232" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0233", "reference_id": "RHSA-2026:0233", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0233" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0247", "reference_id": "RHSA-2026:0247", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0247" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0295", "reference_id": "RHSA-2026:0295", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0295" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0296", "reference_id": "RHSA-2026:0296", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0296" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0304", "reference_id": "RHSA-2026:0304", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0333", "reference_id": "RHSA-2026:0333", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0333" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0334", "reference_id": "RHSA-2026:0334", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0334" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0335", "reference_id": "RHSA-2026:0335", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0335" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0336", "reference_id": "RHSA-2026:0336", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0336" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0344", "reference_id": "RHSA-2026:0344", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0351", "reference_id": "RHSA-2026:0351", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0357", "reference_id": "RHSA-2026:0357", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0357" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0367", "reference_id": "RHSA-2026:0367", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0367" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0376", "reference_id": "RHSA-2026:0376", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0698", "reference_id": "RHSA-2026:0698", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:0698" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8812", "reference_id": "RHSA-2026:8812", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:8812" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:8813", "reference_id": "RHSA-2026:8813", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2026:8813" }, { "reference_url": "https://www.zerodayinitiative.com/advisories/ZDI-25-1025/", "reference_id": "ZDI-25-1025", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-12-24T16:10:37Z/" } ], "url": "https://www.zerodayinitiative.com/advisories/ZDI-25-1025/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/930445?format=api", "purl": "pkg:deb/debian/mariadb@11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930444?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.5-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.5-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930436?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-0%2Bdeb13u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-0%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/930435?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/1066833?format=api", "purl": "pkg:deb/debian/mariadb@1:11.8.6-6?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" } ], "aliases": [ "CVE-2025-13699" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ttzx-uwaj-8uek" } ], "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/mariadb@1:11.8.6-6%3Fdistro=trixie" }