Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/4256?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/4256?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.1.1-21etch5", "type": "deb", "namespace": "debian", "name": "xorg-server", "version": "2:1.1.1-21etch5", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "2:21.1.23-1", "latest_non_vulnerable_version": "2:21.1.23-1", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91480?format=api", "vulnerability_id": "VCID-1hen-4651-9fay", "summary": "xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21885.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21885.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47178", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47194", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47197", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256540", "reference_id": "2256540", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256540" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-21885", "reference_id": "CVE-2024-21885", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-21885" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6587-1/", "reference_id": "USN-6587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-1/" }, { "reference_url": "https://usn.ubuntu.com/6587-2/", "reference_id": "USN-6587-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-2/" }, { "reference_url": "https://usn.ubuntu.com/6587-5/", "reference_id": "USN-6587-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-5/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-21885" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1hen-4651-9fay" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5018?format=api", "vulnerability_id": "VCID-1xeu-h1q2-5bfh", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4008.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4008.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22624", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22564", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.2254", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22609", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026059", "reference_id": "2026059", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026059" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" }, { "reference_url": "https://usn.ubuntu.com/5193-1/", "reference_id": "USN-5193-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-1/" }, { "reference_url": "https://usn.ubuntu.com/5193-2/", "reference_id": "USN-5193-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-2/" }, { "reference_url": "https://usn.ubuntu.com/5193-3/", "reference_id": "USN-5193-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2021-4008" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1xeu-h1q2-5bfh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106645?format=api", "vulnerability_id": "VCID-24mm-8spg-nqfq", "summary": "Integer overflow in the fbShmPutImage function in the MIT-SHM extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to read arbitrary process memory via crafted values for a Pixmap width and height.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1379.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1379.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-1379", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00996", "scoring_system": "epss", "scoring_elements": "0.77292", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00996", "scoring_system": "epss", "scoring_elements": "0.77322", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00996", "scoring_system": "epss", "scoring_elements": "0.77332", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00996", "scoring_system": "epss", "scoring_elements": "0.77321", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-1379" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1379", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1379" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=445414", "reference_id": "445414", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=445414" }, { "reference_url": "https://security.gentoo.org/glsa/200806-07", "reference_id": "GLSA-200806-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200806-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0502", "reference_id": "RHSA-2008:0502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0503", "reference_id": "RHSA-2008:0503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0504", "reference_id": "RHSA-2008:0504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0512", "reference_id": "RHSA-2008:0512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0512" }, { "reference_url": "https://usn.ubuntu.com/616-1/", "reference_id": "USN-616-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/616-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2008-1379" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-24mm-8spg-nqfq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106675?format=api", "vulnerability_id": "VCID-24mx-tgrf-nqa8", "summary": "The SProcXFixesSelectSelectionInput function in the XFixes extension in X.Org X Window System (aka X11 or X) X11R6.8.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length value.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8102.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8102.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78527", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78553", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78561", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78552", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8102" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168714", "reference_id": "1168714", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168714" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8102" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-24mx-tgrf-nqa8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5016?format=api", "vulnerability_id": "VCID-2enj-ds99-9fde", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4010.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4010.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.39066", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.39041", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.38977", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.3907", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026073", "reference_id": "2026073", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026073" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" }, { "reference_url": "https://usn.ubuntu.com/5193-1/", "reference_id": "USN-5193-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2021-4010" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2enj-ds99-9fde" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106643?format=api", "vulnerability_id": "VCID-31f1-edc5-nfey", "summary": "The (1) SProcRecordCreateContext and (2) SProcRecordRegisterClients functions in the Record extension and the (3) SProcSecurityGenerateAuthorization function in the Security extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via requests with crafted length values that specify an arbitrary number of bytes to be swapped on the heap, which triggers heap corruption.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1377.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-1377.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-1377", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02373", "scoring_system": "epss", "scoring_elements": "0.85252", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02373", "scoring_system": "epss", "scoring_elements": "0.85276", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02373", "scoring_system": "epss", "scoring_elements": "0.85281", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-1377" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1377", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1377" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=445403", "reference_id": "445403", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=445403" }, { "reference_url": "https://security.gentoo.org/glsa/200806-07", "reference_id": "GLSA-200806-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200806-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0502", "reference_id": "RHSA-2008:0502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0503", "reference_id": "RHSA-2008:0503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0504", "reference_id": "RHSA-2008:0504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0512", "reference_id": "RHSA-2008:0512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0512" }, { "reference_url": "https://usn.ubuntu.com/616-1/", "reference_id": "USN-616-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/616-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2008-1377" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-31f1-edc5-nfey" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106660?format=api", "vulnerability_id": "VCID-3tqr-68kv-t3cp", "summary": "Integer underflow in the xTrapezoidValid macro in render/picture.h in X.Org allows context-dependent attackers to cause a denial of service (crash) via a negative bottom value.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6424.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-6424.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-6424", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0684", "scoring_system": "epss", "scoring_elements": "0.91508", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0684", "scoring_system": "epss", "scoring_elements": "0.91521", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0684", "scoring_system": "epss", "scoring_elements": "0.91523", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0684", "scoring_system": "epss", "scoring_elements": "0.9152", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-6424" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6424", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6424" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1037984", "reference_id": "1037984", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1037984" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742922", "reference_id": "742922", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=742922" }, { "reference_url": "https://security.gentoo.org/glsa/201701-64", "reference_id": "GLSA-201701-64", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-64" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1868", "reference_id": "RHSA-2013:1868", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1868" }, { "reference_url": "https://usn.ubuntu.com/2500-1/", "reference_id": "USN-2500-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2500-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2013-6424" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-3tqr-68kv-t3cp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90719?format=api", "vulnerability_id": "VCID-44pt-tgfg-k3hh", "summary": "xorg-x11-server: Heap buffer overread/data leakage in ProcAppleDRICreatePixmap", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31082.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31082.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31082", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.13", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.13035", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.13038", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31082" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31082", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31082" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2024-April/003497.html", "reference_id": "003497.html", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T15:13:28Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2024-April/003497.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271999", "reference_id": "2271999", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T15:13:28Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271999" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-31082", "reference_id": "CVE-2024-31082", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T15:13:28Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-31082" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://usn.ubuntu.com/6721-1/", "reference_id": "USN-6721-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6721-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-31082" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-44pt-tgfg-k3hh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106670?format=api", "vulnerability_id": "VCID-47qj-hd74-27h7", "summary": "The XVideo extension in XFree86 4.0.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXvQueryExtension, (2) SProcXvQueryAdaptors, (3) SProcXvQueryEncodings, (4) SProcXvGrabPort, (5) SProcXvUngrabPort, (6) SProcXvPutVideo, (7) SProcXvPutStill, (8) SProcXvGetVideo, (9) SProcXvGetStill, (10) SProcXvPutImage, (11) SProcXvShmPutImage, (12) SProcXvSelectVideoNotify, (13) SProcXvSelectPortNotify, (14) SProcXvStopVideo, (15) SProcXvSetPortAttribute, (16) SProcXvGetPortAttribute, (17) SProcXvQueryBestSize, (18) SProcXvQueryPortAttributes, (19) SProcXvQueryImageAttributes, or (20) SProcXvListImageFormats function.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8099.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8099.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01337", "scoring_system": "epss", "scoring_elements": "0.80329", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01337", "scoring_system": "epss", "scoring_elements": "0.80354", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01337", "scoring_system": "epss", "scoring_elements": "0.80357", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01337", "scoring_system": "epss", "scoring_elements": "0.80353", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168710", "reference_id": "1168710", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168710" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8099" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-47qj-hd74-27h7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90720?format=api", "vulnerability_id": "VCID-4q3g-1az1-ybd6", "summary": "xorg-x11-server: Use-after-free in ProcRenderAddGlyphs", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31083.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31083.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31083", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26293", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26345", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26337", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31083" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272000", "reference_id": "2272000", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272000" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-31083", "reference_id": "CVE-2024-31083", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-31083" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1785", "reference_id": "RHSA-2024:1785", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:1785" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2036", "reference_id": "RHSA-2024:2036", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2037", "reference_id": "RHSA-2024:2037", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2038", "reference_id": "RHSA-2024:2038", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2039", "reference_id": "RHSA-2024:2039", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2039" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2040", "reference_id": "RHSA-2024:2040", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2041", "reference_id": "RHSA-2024:2041", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2042", "reference_id": "RHSA-2024:2042", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2080", "reference_id": "RHSA-2024:2080", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2616", "reference_id": "RHSA-2024:2616", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3258", "reference_id": "RHSA-2024:3258", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3261", "reference_id": "RHSA-2024:3261", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3343", "reference_id": "RHSA-2024:3343", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9093", "reference_id": "RHSA-2024:9093", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9122", "reference_id": "RHSA-2024:9122", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9122" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6721-1/", "reference_id": "USN-6721-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6721-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-31083" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4q3g-1az1-ybd6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106655?format=api", "vulnerability_id": "VCID-563m-twrn-1kg7", "summary": "xkeyboard-config before 2.5 in X.Org before 7.6 enables certain XKB debugging functions by default, which allows physically proximate attackers to bypass an X screen lock via keyboard combinations that break the input grab.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0064.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0064.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0064", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23834", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23929", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23912", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23862", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-0064" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0064", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0064" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=656410", "reference_id": "656410", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=656410" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=783039", "reference_id": "783039", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=783039" }, { "reference_url": "https://security.gentoo.org/glsa/201201-16", "reference_id": "GLSA-201201-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201201-16" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" } ], "aliases": [ "CVE-2012-0064" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-563m-twrn-1kg7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106652?format=api", "vulnerability_id": "VCID-5h7m-8559-sqau", "summary": "The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7 and earlier allows local users to read arbitrary memory and possibly cause a denial of service (server crash) via unspecified vectors related to an \"input sanitization flaw.\"", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4819.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4819.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-4819", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22526", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.2261", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22597", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22552", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-4819" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4819", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4819" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=740961", "reference_id": "740961", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=740961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1359", "reference_id": "RHSA-2011:1359", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1359" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1360", "reference_id": "RHSA-2011:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1360" }, { "reference_url": "https://usn.ubuntu.com/1232-1/", "reference_id": "USN-1232-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1232-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" } ], "aliases": [ "CVE-2010-4819" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5h7m-8559-sqau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/70727?format=api", "vulnerability_id": "VCID-5nbt-cvgt-pkff", "summary": "GNOME screensaver 2.20 in Ubuntu 7.10, when used with Compiz, does not properly reserve input focus, which allows attackers with physical access to take control of the session after entering an Alt-Tab sequence, a related issue to CVE-2007-3069.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3920.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-3920.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-3920", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.16325", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.16407", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.16406", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00051", "scoring_system": "epss", "scoring_elements": "0.16361", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-3920" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3920", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3920" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=350271", "reference_id": "350271", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=350271" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=449108", "reference_id": "449108", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=449108" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0485", "reference_id": "RHSA-2008:0485", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0485" }, { "reference_url": "https://usn.ubuntu.com/537-1/", "reference_id": "USN-537-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/537-1/" }, { "reference_url": "https://usn.ubuntu.com/537-2/", "reference_id": "USN-537-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/537-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2007-3920" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-5nbt-cvgt-pkff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91745?format=api", "vulnerability_id": "VCID-67p9-ddez-7ka1", "summary": "xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6377.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6377.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6377", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60406", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.6041", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60398", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6377" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6377", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6377" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6478" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253291", "reference_id": "2253291", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253291" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7886", "reference_id": "RHSA-2023:7886", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7886" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0006", "reference_id": "RHSA-2024:0006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0009", "reference_id": "RHSA-2024:0009", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0009" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0010", "reference_id": "RHSA-2024:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0014", "reference_id": "RHSA-2024:0014", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0014" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0015", "reference_id": "RHSA-2024:0015", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0015" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0016", "reference_id": "RHSA-2024:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0017", "reference_id": "RHSA-2024:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0018", "reference_id": "RHSA-2024:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0020", "reference_id": "RHSA-2024:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:13998", "reference_id": "RHSA-2025:13998", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:13998" }, { "reference_url": "https://usn.ubuntu.com/6555-1/", "reference_id": "USN-6555-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6555-1/" }, { "reference_url": "https://usn.ubuntu.com/6555-2/", "reference_id": "USN-6555-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6555-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-6377" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-67p9-ddez-7ka1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106637?format=api", "vulnerability_id": "VCID-6814-39jv-pubh", "summary": "X.Org Xserver before 1.4.1 allows local users to determine the existence of arbitrary files via a filename argument in the -sp option to the X program, which produces different error messages depending on whether the filename exists.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5958.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5958.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5958", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03599", "scoring_system": "epss", "scoring_elements": "0.8798", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.03599", "scoring_system": "epss", "scoring_elements": "0.88001", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.03599", "scoring_system": "epss", "scoring_elements": "0.88004", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5958" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5958", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5958" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=391841", "reference_id": "391841", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=391841" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/5152.sh", "reference_id": "CVE-2007-5958", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/dos/5152.sh" }, { "reference_url": "https://security.gentoo.org/glsa/200801-09", "reference_id": "GLSA-200801-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200801-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0029", "reference_id": "RHSA-2008:0029", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0029" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0030", "reference_id": "RHSA-2008:0030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0030" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0031", "reference_id": "RHSA-2008:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0031" }, { "reference_url": "https://usn.ubuntu.com/571-1/", "reference_id": "USN-571-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/571-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2007-5958" ], "risk_score": null, "exploitability": "2.0", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6814-39jv-pubh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99562?format=api", "vulnerability_id": "VCID-6bnp-kn76-4qdm", "summary": "xorg-x11-server: XTestSwapFakeInput stack overflow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46340.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46340.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01237", "scoring_system": "epss", "scoring_elements": "0.79556", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01237", "scoring_system": "epss", "scoring_elements": "0.79582", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01237", "scoring_system": "epss", "scoring_elements": "0.79588", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151755", "reference_id": "2151755", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151755" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-1/", "reference_id": "USN-5778-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-1/" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-46340" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6bnp-kn76-4qdm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92135?format=api", "vulnerability_id": "VCID-6ezy-q9rx-rfdd", "summary": "xorg-x11-server: Use-after-free bug in DestroyWindow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5380.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5380.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5380", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22774", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22759", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22712", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5380" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5367", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5367" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5380", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5380" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2244736", "reference_id": "2244736", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2244736" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7428", "reference_id": "RHSA-2023:7428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2298", "reference_id": "RHSA-2024:2298", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2298" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3067", "reference_id": "RHSA-2024:3067", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3067" }, { "reference_url": "https://usn.ubuntu.com/6453-1/", "reference_id": "USN-6453-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6453-1/" }, { "reference_url": "https://usn.ubuntu.com/6453-2/", "reference_id": "USN-6453-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6453-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-5380" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6ezy-q9rx-rfdd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106653?format=api", "vulnerability_id": "VCID-6sfc-pmbw-6ffg", "summary": "The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to determine the existence of arbitrary files via a symlink attack on a temporary lock file, which is handled differently if the file exists.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4028.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4028.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4028", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27302", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27372", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27321", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.001", "scoring_system": "epss", "scoring_elements": "0.27281", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4028" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4028", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4028" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=745755", "reference_id": "745755", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745755" }, { "reference_url": "https://security.gentoo.org/glsa/201110-19", "reference_id": "GLSA-201110-19", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0303", "reference_id": "RHSA-2012:0303", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0939", "reference_id": "RHSA-2012:0939", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0939" }, { "reference_url": "https://usn.ubuntu.com/1232-1/", "reference_id": "USN-1232-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1232-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" } ], "aliases": [ "CVE-2011-4028" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6sfc-pmbw-6ffg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80411?format=api", "vulnerability_id": "VCID-6t55-ed2e-2bcw", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in Big Requests Extension", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49176.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49176.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49176", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00267", "scoring_system": "epss", "scoring_elements": "0.50403", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00267", "scoring_system": "epss", "scoring_elements": "0.50414", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00267", "scoring_system": "epss", "scoring_elements": "0.50422", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49176" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/03731b326a80b582e48d939fe62cb1e2b10400d9", "reference_id": "03731b326a80b582e48d939fe62cb1e2b10400d9", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/03731b326a80b582e48d939fe62cb1e2b10400d9" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108073", "reference_id": "1108073", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108073" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369954", "reference_id": "2369954", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369954" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/4fc4d76b2c7aaed61ed2653f997783a3714c4fe1", "reference_id": "4fc4d76b2c7aaed61ed2653f997783a3714c4fe1", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/4fc4d76b2c7aaed61ed2653f997783a3714c4fe1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server", "reference_id": "cpe:/o:redhat:rhel_aus:7.7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-49176", "reference_id": "CVE-2025-49176", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-49176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9964" }, { "reference_url": "https://www.x.org/wiki/Development/Security/", "reference_id": "Security", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://www.x.org/wiki/Development/Security/" }, { "reference_url": "https://usn.ubuntu.com/7573-1/", "reference_id": "USN-7573-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-1/" }, { "reference_url": "https://usn.ubuntu.com/7573-2/", "reference_id": "USN-7573-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-49176" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6t55-ed2e-2bcw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106699?format=api", "vulnerability_id": "VCID-713b-xwq2-7ych", "summary": "A flaw was found in xorg-x11-server before 1.20.10. A heap-buffer overflow in XkbSetDeviceInfo may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25712.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25712.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25712", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32493", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32453", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32452", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32524", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25712" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25712" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1887276", "reference_id": "1887276", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1887276" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216", "reference_id": "976216", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216" }, { "reference_url": "https://security.archlinux.org/ASA-202012-6", "reference_id": "ASA-202012-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202012-6" }, { "reference_url": "https://security.archlinux.org/AVG-1310", "reference_id": "AVG-1310", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1310" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5408", "reference_id": "RHSA-2020:5408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4656-1/", "reference_id": "USN-4656-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4656-1/" }, { "reference_url": "https://usn.ubuntu.com/4656-2/", "reference_id": "USN-4656-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4656-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-25712" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-713b-xwq2-7ych" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106684?format=api", "vulnerability_id": "VCID-74jd-1pbz-u7cu", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12182.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12182.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.7668", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76655", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76685", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76691", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509223", "reference_id": "1509223", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509223" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12182" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-74jd-1pbz-u7cu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106639?format=api", "vulnerability_id": "VCID-7hgn-umm1-9ydh", "summary": "The ProcGetReservedColormapEntries function in the TOG-CUP extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to read the contents of arbitrary memory locations via a request containing a 32-bit value that is improperly used as an array index.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6428.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6428.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6428", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02514", "scoring_system": "epss", "scoring_elements": "0.85671", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02514", "scoring_system": "epss", "scoring_elements": "0.85694", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02514", "scoring_system": "epss", "scoring_elements": "0.85699", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02514", "scoring_system": "epss", "scoring_elements": "0.85695", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6428" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6428", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6428" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=413791", "reference_id": "413791", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=413791" }, { "reference_url": "https://security.gentoo.org/glsa/200801-09", "reference_id": "GLSA-200801-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200801-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0029", "reference_id": "RHSA-2008:0029", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0029" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0030", "reference_id": "RHSA-2008:0030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0030" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0031", "reference_id": "RHSA-2008:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0031" }, { "reference_url": "https://usn.ubuntu.com/571-1/", "reference_id": "USN-571-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/571-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2007-6428" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-7hgn-umm1-9ydh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91489?format=api", "vulnerability_id": "VCID-828y-hsz4-tqbe", "summary": "xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0229.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0229.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00295", "scoring_system": "epss", "scoring_elements": "0.53152", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00295", "scoring_system": "epss", "scoring_elements": "0.53133", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00295", "scoring_system": "epss", "scoring_elements": "0.53143", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256690", "reference_id": "2256690", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256690" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-0229", "reference_id": "CVE-2024-0229", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-0229" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6587-1/", "reference_id": "USN-6587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-1/" }, { "reference_url": "https://usn.ubuntu.com/6587-2/", "reference_id": "USN-6587-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-2/" }, { "reference_url": "https://usn.ubuntu.com/6587-5/", "reference_id": "USN-6587-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-5/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-0229" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-828y-hsz4-tqbe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5017?format=api", "vulnerability_id": "VCID-8bbs-eqdc-c7fh", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4009.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4009.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25824", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25768", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25722", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25814", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026072", "reference_id": "2026072", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026072" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" }, { "reference_url": "https://usn.ubuntu.com/5193-1/", "reference_id": "USN-5193-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-1/" }, { "reference_url": "https://usn.ubuntu.com/5193-2/", "reference_id": "USN-5193-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-2/" }, { "reference_url": "https://usn.ubuntu.com/5193-3/", "reference_id": "USN-5193-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2021-4009" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8bbs-eqdc-c7fh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73042?format=api", "vulnerability_id": "VCID-8h6n-ntrj-q7g6", "summary": "xorg: xwayland: Use-after-free in Xkb client resource removal", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62230.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62230.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62230", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.0288", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02924", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02931", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62230" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62230", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62230" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2025-October/003635.html", "reference_id": "003635.html", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2025-October/003635.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402653", "reference_id": "2402653", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402653" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-62230", "reference_id": "CVE-2025-62230", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-62230" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19432", "reference_id": "RHSA-2025:19432", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19433", "reference_id": "RHSA-2025:19433", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19433" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19434", "reference_id": "RHSA-2025:19434", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19435", "reference_id": "RHSA-2025:19435", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19435" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19489", "reference_id": "RHSA-2025:19489", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19489" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19623", "reference_id": "RHSA-2025:19623", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19909", "reference_id": "RHSA-2025:19909", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20958", "reference_id": "RHSA-2025:20958", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20960", "reference_id": "RHSA-2025:20960", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20961", "reference_id": "RHSA-2025:20961", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21035", "reference_id": "RHSA-2025:21035", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22040", "reference_id": "RHSA-2025:22040", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22041", "reference_id": "RHSA-2025:22041", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22051", "reference_id": "RHSA-2025:22051", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22055", "reference_id": "RHSA-2025:22055", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22056", "reference_id": "RHSA-2025:22056", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22077", "reference_id": "RHSA-2025:22077", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22096", "reference_id": "RHSA-2025:22096", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22164", "reference_id": "RHSA-2025:22164", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22167", "reference_id": "RHSA-2025:22167", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22364", "reference_id": "RHSA-2025:22364", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22364" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22365", "reference_id": "RHSA-2025:22365", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22365" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22426", "reference_id": "RHSA-2025:22426", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22426" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22427", "reference_id": "RHSA-2025:22427", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22667", "reference_id": "RHSA-2025:22667", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22729", "reference_id": "RHSA-2025:22729", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22742", "reference_id": "RHSA-2025:22742", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22753", "reference_id": "RHSA-2025:22753", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22753" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0031", "reference_id": "RHSA-2026:0031", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0033", "reference_id": "RHSA-2026:0033", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0034", "reference_id": "RHSA-2026:0034", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0035", "reference_id": "RHSA-2026:0035", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0036", "reference_id": "RHSA-2026:0036", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0036" }, { "reference_url": "https://usn.ubuntu.com/7846-1/", "reference_id": "USN-7846-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7846-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-62230" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8h6n-ntrj-q7g6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106677?format=api", "vulnerability_id": "VCID-8k3e-h7va-myfg", "summary": "X.Org Server (aka xserver and xorg-server) 1.15.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) sproc_dri3_query_version, (2) sproc_dri3_open, (3) sproc_dri3_pixmap_from_buffer, (4) sproc_dri3_buffer_from_pixmap, (5) sproc_dri3_fence_from_fd, (6) sproc_dri3_fd_from_fence, (7) proc_present_query_capabilities, (8) sproc_present_query_version, (9) sproc_present_pixmap, (10) sproc_present_notify_msc, (11) sproc_present_select_input, or (12) sproc_present_query_capabilities function in the (a) DRI3 or (b) Present extension.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8103.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8103.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8103", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.83079", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.83106", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01787", "scoring_system": "epss", "scoring_elements": "0.83103", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8103" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8103", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8103" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168716", "reference_id": "1168716", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168716" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8103" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8k3e-h7va-myfg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106668?format=api", "vulnerability_id": "VCID-8unb-tn3a-abe3", "summary": "The DBE extension in X.Org X Window System (aka X11 or X) X11R6.1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) ProcDbeSwapBuffers or (2) SProcDbeSwapBuffers function.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8097.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8097.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.80046", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.80071", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.80076", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.8007", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168705", "reference_id": "1168705", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168705" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8097" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8unb-tn3a-abe3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106687?format=api", "vulnerability_id": "VCID-939t-kz1h-k7d6", "summary": "xorg-x11-server before 1.19.5 was missing length validation in X-Resource extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12186.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12186.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.73529", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.735", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.73536", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.73541", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509216", "reference_id": "1509216", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509216" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12186" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-939t-kz1h-k7d6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85250?format=api", "vulnerability_id": "VCID-95dx-8w8k-4kfp", "summary": "xorg: xwayland: Out-of-bounds write in CreatePointerBarrierClient()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26598.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26598.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26598", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09396", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09381", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09376", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26598" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345254", "reference_id": "2345254", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345254" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26598", "reference_id": "CVE-2025-26598", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26598" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26598" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-95dx-8w8k-4kfp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85245?format=api", "vulnerability_id": "VCID-96ga-avmd-kubh", "summary": "xorg: xwayland: Use-after-free in PlayReleasedEvents()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26600.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26600.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26600", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26600" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345252", "reference_id": "2345252", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345252" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26600", "reference_id": "CVE-2025-26600", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26600" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26600" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-96ga-avmd-kubh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106656?format=api", "vulnerability_id": "VCID-96zj-dxw7-jbf1", "summary": "Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows attackers to cause a denial of service or possibly execute arbitrary code via format string specifiers in an input device name.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2118.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2118.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2012-2118", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02146", "scoring_system": "epss", "scoring_elements": "0.84544", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02146", "scoring_system": "epss", "scoring_elements": "0.84568", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.02146", "scoring_system": "epss", "scoring_elements": "0.84573", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2012-2118" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2118", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2118" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=673148", "reference_id": "673148", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=673148" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=814126", "reference_id": "814126", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=814126" }, { "reference_url": "https://security.gentoo.org/glsa/201207-04", "reference_id": "GLSA-201207-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201207-04" }, { "reference_url": "https://usn.ubuntu.com/1502-1/", "reference_id": "USN-1502-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1502-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" } ], "aliases": [ "CVE-2012-2118" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-96zj-dxw7-jbf1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6224?format=api", "vulnerability_id": "VCID-97f6-pm5e-8qf3", "summary": "privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14665.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14665.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-14665", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.16034", "scoring_system": "epss", "scoring_elements": "0.94912", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.16034", "scoring_system": "epss", "scoring_elements": "0.94902", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.16034", "scoring_system": "epss", "scoring_elements": "0.94913", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.16034", "scoring_system": "epss", "scoring_elements": "0.94911", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-14665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14665" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1637761", "reference_id": "1637761", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1637761" }, { "reference_url": "https://security.archlinux.org/ASA-201810-15", "reference_id": "ASA-201810-15", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201810-15" }, { "reference_url": "https://security.archlinux.org/AVG-788", "reference_id": "AVG-788", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-788" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/aix/local/45938.pl", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/aix/local/45938.pl" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45832.py", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45832.py" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45697.txt", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45697.txt" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45908.rb", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45908.rb" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45922.sh", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45922.sh" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/openbsd/local/45742.sh", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/openbsd/local/45742.sh" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/solaris/local/46142.sh", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/solaris/local/46142.sh" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/47701.rb", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/47701.rb" }, { "reference_url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/be6cfde92158d2c6716711046536c9f1ca44d958/modules/exploits/multi/local/xorg_x11_suid_server.rb", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/be6cfde92158d2c6716711046536c9f1ca44d958/modules/exploits/multi/local/xorg_x11_suid_server.rb" }, { "reference_url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/aix/local/xorg_x11_server.rb", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/aix/local/xorg_x11_server.rb" }, { "reference_url": "https://twitter.com/hackerfantastic/status/1055517801224396800", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://twitter.com/hackerfantastic/status/1055517801224396800" }, { "reference_url": "https://security.gentoo.org/glsa/201810-09", "reference_id": "GLSA-201810-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3410", "reference_id": "RHSA-2018:3410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3410" }, { "reference_url": "https://usn.ubuntu.com/3802-1/", "reference_id": "USN-3802-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3802-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2018-14665" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-97f6-pm5e-8qf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106665?format=api", "vulnerability_id": "VCID-9k4g-mc81-tffe", "summary": "Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension in X.Org Server (aka xserver and xorg-server) 1.7.0 through 1.16.x before 1.16.3 allows remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request, which triggers an out-of-bounds read or write.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8094.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8094.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01042", "scoring_system": "epss", "scoring_elements": "0.77789", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01042", "scoring_system": "epss", "scoring_elements": "0.77816", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01042", "scoring_system": "epss", "scoring_elements": "0.77823", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01042", "scoring_system": "epss", "scoring_elements": "0.77813", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168691", "reference_id": "1168691", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168691" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8094" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9k4g-mc81-tffe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106672?format=api", "vulnerability_id": "VCID-9kj6-9etk-uudg", "summary": "The RandR extension in XFree86 4.2.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcRRQueryVersion, (2) SProcRRGetScreenInfo, (3) SProcRRSelectInput, or (4) SProcRRConfigureOutputProperty function.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8101.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8101.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79818", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79843", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79849", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01269", "scoring_system": "epss", "scoring_elements": "0.79844", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168713", "reference_id": "1168713", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168713" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8101" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9kj6-9etk-uudg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80475?format=api", "vulnerability_id": "VCID-9pnm-jep8-3bf9", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer overflow in X Record extension", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49179.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49179.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49179", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00184", "scoring_system": "epss", "scoring_elements": "0.39988", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00184", "scoring_system": "epss", "scoring_elements": "0.40013", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00184", "scoring_system": "epss", "scoring_elements": "0.40016", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49179" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369978", "reference_id": "2369978", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369978" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/2bde9ca49a8fd9a1e6697d5e7ef837870d66f5d4", "reference_id": "2bde9ca49a8fd9a1e6697d5e7ef837870d66f5d4", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/2bde9ca49a8fd9a1e6697d5e7ef837870d66f5d4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server", "reference_id": "cpe:/o:redhat:rhel_aus:7.7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-49179", "reference_id": "CVE-2025-49179", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-49179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9964" }, { "reference_url": "https://www.x.org/wiki/Development/Security/", "reference_id": "Security", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://www.x.org/wiki/Development/Security/" }, { "reference_url": "https://usn.ubuntu.com/7573-1/", "reference_id": "USN-7573-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-1/" }, { "reference_url": "https://usn.ubuntu.com/7573-2/", "reference_id": "USN-7573-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-49179" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9pnm-jep8-3bf9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106698?format=api", "vulnerability_id": "VCID-a2n5-8wwp-87hw", "summary": "A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14362.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14362.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46046", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46114", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46116", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46094", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869144", "reference_id": "1869144", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869144" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4910", "reference_id": "RHSA-2020:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4953", "reference_id": "RHSA-2020:4953", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4953" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4488-1/", "reference_id": "USN-4488-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-1/" }, { "reference_url": "https://usn.ubuntu.com/4488-2/", "reference_id": "USN-4488-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-14362" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a2n5-8wwp-87hw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106666?format=api", "vulnerability_id": "VCID-bny6-pyf6-k3ht", "summary": "The XInput extension in X.Org X Window System (aka X11 or X) X11R4 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) SProcXChangeDeviceControl, (2) ProcXChangeDeviceControl, (3) ProcXChangeFeedbackControl, (4) ProcXSendExtensionEvent, (5) SProcXIAllowEvents, (6) SProcXIChangeCursor, (7) ProcXIChangeHierarchy, (8) SProcXIGetClientPointer, (9) SProcXIGrabDevice, (10) SProcXIUngrabDevice, (11) ProcXIUngrabDevice, (12) SProcXIPassiveGrabDevice, (13) ProcXIPassiveGrabDevice, (14) SProcXIPassiveUngrabDevice, (15) ProcXIPassiveUngrabDevice, (16) SProcXListDeviceProperties, (17) SProcXDeleteDeviceProperty, (18) SProcXIListProperties, (19) SProcXIDeleteProperty, (20) SProcXIGetProperty, (21) SProcXIQueryDevice, (22) SProcXIQueryPointer, (23) SProcXISelectEvents, (24) SProcXISetClientPointer, (25) SProcXISetFocus, (26) SProcXIGetFocus, or (27) SProcXIWarpPointer function.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8095.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8095.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78527", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78553", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78561", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01115", "scoring_system": "epss", "scoring_elements": "0.78552", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168694", "reference_id": "1168694", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168694" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8095" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bny6-pyf6-k3ht" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/100698?format=api", "vulnerability_id": "VCID-bxtg-a4vf-8fau", "summary": "xorg-x11-server: memory leak in ProcXkbGetKbdByName() in xkb/xkb.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3551.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3551.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3551", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0063", "scoring_system": "epss", "scoring_elements": "0.7068", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0063", "scoring_system": "epss", "scoring_elements": "0.70723", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0063", "scoring_system": "epss", "scoring_elements": "0.70731", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0063", "scoring_system": "epss", "scoring_elements": "0.70713", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3551" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140701", "reference_id": "2140701", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140701" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8491", "reference_id": "RHSA-2022:8491", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8491" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://usn.ubuntu.com/5740-1/", "reference_id": "USN-5740-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5740-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-3551" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bxtg-a4vf-8fau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91494?format=api", "vulnerability_id": "VCID-czx3-mdx4-hbey", "summary": "xorg-x11-server: SELinux unlabeled GLX PBuffer", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0408.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0408.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04477", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04466", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04484", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257689", "reference_id": "2257689", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257689" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-0408", "reference_id": "CVE-2024-0408", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-0408" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://usn.ubuntu.com/6587-1/", "reference_id": "USN-6587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-1/" }, { "reference_url": "https://usn.ubuntu.com/6587-2/", "reference_id": "USN-6587-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-2/" }, { "reference_url": "https://usn.ubuntu.com/6587-5/", "reference_id": "USN-6587-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-5/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-0408" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-czx3-mdx4-hbey" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106635?format=api", "vulnerability_id": "VCID-d78c-241h-7yh6", "summary": "Array index error in the XFree86-Misc extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via a PassMessage request containing a large array index.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5760.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-5760.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5760", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04445", "scoring_system": "epss", "scoring_elements": "0.89242", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.04445", "scoring_system": "epss", "scoring_elements": "0.8926", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.04445", "scoring_system": "epss", "scoring_elements": "0.89261", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-5760" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5760", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5760" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=414031", "reference_id": "414031", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=414031" }, { "reference_url": "https://security.gentoo.org/glsa/200801-09", "reference_id": "GLSA-200801-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200801-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0030", "reference_id": "RHSA-2008:0030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0030" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0031", "reference_id": "RHSA-2008:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0031" }, { "reference_url": "https://usn.ubuntu.com/571-1/", "reference_id": "USN-571-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/571-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2007-5760" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d78c-241h-7yh6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106680?format=api", "vulnerability_id": "VCID-d837-arrp-cyhx", "summary": "The ProcPutImage function in dix/dispatch.c in X.Org Server (aka xserver and xorg-server) before 1.16.4 allows attackers to cause a denial of service (divide-by-zero and crash) via a zero-height PutImage request.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3418.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3418.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3418", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00497", "scoring_system": "epss", "scoring_elements": "0.66197", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00497", "scoring_system": "epss", "scoring_elements": "0.66248", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00497", "scoring_system": "epss", "scoring_elements": "0.66257", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00497", "scoring_system": "epss", "scoring_elements": "0.6624", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3418" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3418", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3418" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1216020", "reference_id": "1216020", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1216020" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774308", "reference_id": "774308", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=774308" }, { "reference_url": "https://security.gentoo.org/glsa/201701-64", "reference_id": "GLSA-201701-64", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-64" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2015-3418" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d837-arrp-cyhx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99593?format=api", "vulnerability_id": "VCID-d9am-npf2-jkfm", "summary": "xorg-x11-server: XkbGetKbdByName use-after-free", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4283.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4283.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.41973", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.41916", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.41992", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.42002", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151761", "reference_id": "2151761", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151761" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/", "reference_id": "5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2022-4283", "reference_id": "CVE-2022-4283", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2022-4283" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5304", "reference_id": "dsa-5304", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5304" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/", "reference_id": "DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-1/", "reference_id": "USN-5778-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-1/" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/", "reference_id": "Z67QC4C3I2FI2WRFIUPEHKC36J362MLA", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-4283" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d9am-npf2-jkfm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106661?format=api", "vulnerability_id": "VCID-dbns-h674-n7gm", "summary": "X.Org X Window System (aka X11 and X) X11R5 and X.Org Server (aka xserver and xorg-server) before 1.16.3, when using SUN-DES-1 (Secure RPC) authentication credentials, does not check the return value of a malloc call, which allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a crafted connection request.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8091.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8091.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04839", "scoring_system": "epss", "scoring_elements": "0.89707", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.04839", "scoring_system": "epss", "scoring_elements": "0.89724", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.04839", "scoring_system": "epss", "scoring_elements": "0.89727", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.04839", "scoring_system": "epss", "scoring_elements": "0.89726", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168680", "reference_id": "1168680", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168680" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" }, { "reference_url": "https://usn.ubuntu.com/2438-1/", "reference_id": "USN-2438-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2438-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8091" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dbns-h674-n7gm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106679?format=api", "vulnerability_id": "VCID-dnsa-z3ck-53dc", "summary": "The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3164.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3164.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3164", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.2041", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20483", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20471", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20431", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3164" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1219548", "reference_id": "1219548", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1219548" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788410", "reference_id": "788410", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788410" }, { "reference_url": "https://security.gentoo.org/glsa/201701-64", "reference_id": "GLSA-201701-64", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-64" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" } ], "aliases": [ "CVE-2015-3164" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dnsa-z3ck-53dc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106681?format=api", "vulnerability_id": "VCID-egcx-kc7z-skfq", "summary": "xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S)ProcXIBarrierReleasePointer functions allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12179.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12179.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75071", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75075", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509220", "reference_id": "1509220", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509220" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12179" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-egcx-kc7z-skfq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106693?format=api", "vulnerability_id": "VCID-ej11-bqxf-7qas", "summary": "A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14345.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14345.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.27491", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.27557", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.27506", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.27467", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862241", "reference_id": "1862241", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862241" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4910", "reference_id": "RHSA-2020:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4953", "reference_id": "RHSA-2020:4953", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4953" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4488-2/", "reference_id": "USN-4488-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-2/" }, { "reference_url": "https://usn.ubuntu.com/4490-1/", "reference_id": "USN-4490-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4490-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-14345" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ej11-bqxf-7qas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4866?format=api", "vulnerability_id": "VCID-f67a-ybc4-x3c2", "summary": "privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2319", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11315", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11235", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11282", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11323", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903", "reference_id": "1014903", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106671", "reference_id": "2106671", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106671" }, { "reference_url": "https://security.archlinux.org/AVG-2770", "reference_id": "AVG-2770", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2770" }, { "reference_url": "https://security.gentoo.org/glsa/202210-30", "reference_id": "GLSA-202210-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5905", "reference_id": "RHSA-2022:5905", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5905" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7583", "reference_id": "RHSA-2022:7583", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7583" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8221", "reference_id": "RHSA-2022:8221", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8221" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8222", "reference_id": "RHSA-2022:8222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8222" }, { "reference_url": "https://usn.ubuntu.com/5510-1/", "reference_id": "USN-5510-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5510-1/" }, { "reference_url": "https://usn.ubuntu.com/5510-2/", "reference_id": "USN-5510-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5510-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-2319" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f67a-ybc4-x3c2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106648?format=api", "vulnerability_id": "VCID-f9yc-23gb-qyhy", "summary": "Multiple integer overflows in the Render extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent attackers to execute arbitrary code via a (1) SProcRenderCreateLinearGradient, (2) SProcRenderCreateRadialGradient, or (3) SProcRenderCreateConicalGradient request with an invalid field specifying the number of bytes to swap in the request data, which triggers heap memory corruption.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2362.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2362.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2362", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.84279", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.84302", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.84305", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02076", "scoring_system": "epss", "scoring_elements": "0.84299", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2362" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=448785", "reference_id": "448785", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=448785" }, { "reference_url": "https://security.gentoo.org/glsa/200806-07", "reference_id": "GLSA-200806-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200806-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0504", "reference_id": "RHSA-2008:0504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0504" }, { "reference_url": "https://usn.ubuntu.com/616-1/", "reference_id": "USN-616-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/616-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2008-2362" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f9yc-23gb-qyhy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106662?format=api", "vulnerability_id": "VCID-fdrh-s6h2-buhk", "summary": "Multiple integer overflows in X.Org X Window System (aka X11 or X) X11R1 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) ProcPutImage, (2) GetHosts, (3) RegionSizeof, or (4) REQUEST_FIXED_SIZE function, which triggers an out-of-bounds read or write.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8092.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8092.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01293", "scoring_system": "epss", "scoring_elements": "0.80018", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01293", "scoring_system": "epss", "scoring_elements": "0.80044", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01293", "scoring_system": "epss", "scoring_elements": "0.80049", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01293", "scoring_system": "epss", "scoring_elements": "0.80043", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168684", "reference_id": "1168684", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168684" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8092" ], "risk_score": 1.7, "exploitability": "0.5", "weighted_severity": "3.4", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fdrh-s6h2-buhk" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106696?format=api", "vulnerability_id": "VCID-fm63-7bke-rbe2", "summary": "A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14360.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14360.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14360", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00135", "scoring_system": "epss", "scoring_elements": "0.33196", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00135", "scoring_system": "epss", "scoring_elements": "0.33158", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00135", "scoring_system": "epss", "scoring_elements": "0.3308", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00135", "scoring_system": "epss", "scoring_elements": "0.33182", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25712" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869139", "reference_id": "1869139", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869139" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216", "reference_id": "976216", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216" }, { "reference_url": "https://security.archlinux.org/ASA-202012-6", "reference_id": "ASA-202012-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202012-6" }, { "reference_url": "https://security.archlinux.org/AVG-1310", "reference_id": "AVG-1310", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1310" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5408", "reference_id": "RHSA-2020:5408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4656-1/", "reference_id": "USN-4656-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4656-1/" }, { "reference_url": "https://usn.ubuntu.com/4656-2/", "reference_id": "USN-4656-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4656-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-14360" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fm63-7bke-rbe2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91496?format=api", "vulnerability_id": "VCID-fr1v-dcuh-jbhs", "summary": "xorg-x11-server: SELinux context corruption", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0409.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0409.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03254", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03211", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03245", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257690", "reference_id": "2257690", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257690" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-0409", "reference_id": "CVE-2024-0409", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-0409" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://usn.ubuntu.com/6587-1/", "reference_id": "USN-6587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-1/" }, { "reference_url": "https://usn.ubuntu.com/6587-2/", "reference_id": "USN-6587-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-0409" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fr1v-dcuh-jbhs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106700?format=api", "vulnerability_id": "VCID-g9ce-3gn2-ekbh", "summary": "A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3472.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3472.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3472", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.2385", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23822", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23917", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.239", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3472" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3472", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3472" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1944167", "reference_id": "1944167", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1944167" }, { "reference_url": "https://security.archlinux.org/AVG-1811", "reference_id": "AVG-1811", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1811" }, { "reference_url": "https://security.archlinux.org/AVG-1812", "reference_id": "AVG-1812", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1812" }, { "reference_url": "https://security.gentoo.org/glsa/202104-02", "reference_id": "GLSA-202104-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2033", "reference_id": "RHSA-2021:2033", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2033" }, { "reference_url": "https://usn.ubuntu.com/4905-1/", "reference_id": "USN-4905-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4905-1/" }, { "reference_url": "https://usn.ubuntu.com/4905-2/", "reference_id": "USN-4905-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4905-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2021-3472" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g9ce-3gn2-ekbh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80443?format=api", "vulnerability_id": "VCID-gq7x-petb-hfau", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Unprocessed Client Request Due to Bytes to Ignore", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49178.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49178.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49178", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45844", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45861", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45865", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49178" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369977", "reference_id": "2369977", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369977" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server", "reference_id": "cpe:/o:redhat:rhel_aus:7.7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-49178", "reference_id": "CVE-2025-49178", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-49178" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/d55c54cecb5e83eaa2d56bed5cc4461f9ba318c2", "reference_id": "d55c54cecb5e83eaa2d56bed5cc4461f9ba318c2", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/d55c54cecb5e83eaa2d56bed5cc4461f9ba318c2" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9964" }, { "reference_url": "https://www.x.org/wiki/Development/Security/", "reference_id": "Security", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://www.x.org/wiki/Development/Security/" }, { "reference_url": "https://usn.ubuntu.com/7573-1/", "reference_id": "USN-7573-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-1/" }, { "reference_url": "https://usn.ubuntu.com/7573-2/", "reference_id": "USN-7573-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-49178" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gq7x-petb-hfau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106647?format=api", "vulnerability_id": "VCID-h6us-hyjy-7ye4", "summary": "Integer overflow in the ProcRenderCreateCursor function in the Render extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to cause a denial of service (daemon crash) via unspecified request fields that are used to calculate a glyph buffer size, which triggers a dereference of unmapped memory.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2361.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2361.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2361", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01482", "scoring_system": "epss", "scoring_elements": "0.81336", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01482", "scoring_system": "epss", "scoring_elements": "0.81364", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01482", "scoring_system": "epss", "scoring_elements": "0.81366", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01482", "scoring_system": "epss", "scoring_elements": "0.81365", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2361" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=448784", "reference_id": "448784", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=448784" }, { "reference_url": "https://security.gentoo.org/glsa/200806-07", "reference_id": "GLSA-200806-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200806-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0502", "reference_id": "RHSA-2008:0502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0503", "reference_id": "RHSA-2008:0503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0504", "reference_id": "RHSA-2008:0504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0504" }, { "reference_url": "https://usn.ubuntu.com/616-1/", "reference_id": "USN-616-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/616-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2008-2361" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-h6us-hyjy-7ye4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106646?format=api", "vulnerability_id": "VCID-hnhq-2yq6-87cn", "summary": "Integer overflow in the AllocateGlyph function in the Render extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to execute arbitrary code via unspecified request fields that are used to calculate a heap buffer size, which triggers a heap-based buffer overflow.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2360.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-2360.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2360", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0192", "scoring_system": "epss", "scoring_elements": "0.83681", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0192", "scoring_system": "epss", "scoring_elements": "0.83705", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0192", "scoring_system": "epss", "scoring_elements": "0.83701", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-2360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2360" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=448783", "reference_id": "448783", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=448783" }, { "reference_url": "https://security.gentoo.org/glsa/200806-07", "reference_id": "GLSA-200806-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200806-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0502", "reference_id": "RHSA-2008:0502", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0503", "reference_id": "RHSA-2008:0503", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0503" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0504", "reference_id": "RHSA-2008:0504", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0504" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0512", "reference_id": "RHSA-2008:0512", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0512" }, { "reference_url": "https://usn.ubuntu.com/616-1/", "reference_id": "USN-616-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/616-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2008-2360" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hnhq-2yq6-87cn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106695?format=api", "vulnerability_id": "VCID-hzef-8edc-hyev", "summary": "A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before version 1.20.9 is vulnerable.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14347.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14347.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2706", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27021", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26971", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27068", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862258", "reference_id": "1862258", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862258" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968986", "reference_id": "968986", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968986" }, { "reference_url": "https://security.archlinux.org/AVG-1211", "reference_id": "AVG-1211", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1211" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5408", "reference_id": "RHSA-2020:5408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4488-1/", "reference_id": "USN-4488-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-1/" }, { "reference_url": "https://usn.ubuntu.com/4488-2/", "reference_id": "USN-4488-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-14347" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hzef-8edc-hyev" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106692?format=api", "vulnerability_id": "VCID-j463-aw53-kuc4", "summary": "It was found that xorg-x11-server before 1.19.0 including uses memcmp() to check the received MIT cookie against a series of valid cookies. If the cookie is correct, it is allowed to attach to the Xorg session. Since most memcmp() implementations return after an invalid byte is seen, this causes a time difference between a valid and invalid byte, which could allow an efficient brute force attack.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2624.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2624.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2624", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14752", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14713", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14786", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14794", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:C/I:N/A:N" }, { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1424984", "reference_id": "1424984", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1424984" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856398", "reference_id": "856398", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856398" }, { "reference_url": "https://security.gentoo.org/glsa/201704-03", "reference_id": "GLSA-201704-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201704-03" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" }, { "reference_url": "https://usn.ubuntu.com/3362-1/", "reference_id": "USN-3362-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3362-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" } ], "aliases": [ "CVE-2017-2624" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j463-aw53-kuc4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106651?format=api", "vulnerability_id": "VCID-j55v-3y8e-2kf3", "summary": "The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via (1) a crafted request that triggers a client swap in glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value in the screen field in a request to glx/glxcmds.c.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4818.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4818.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2010-4818", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02846", "scoring_system": "epss", "scoring_elements": "0.8649", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02846", "scoring_system": "epss", "scoring_elements": "0.86513", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02846", "scoring_system": "epss", "scoring_elements": "0.86508", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2010-4818" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4818", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4818" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=740954", "reference_id": "740954", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=740954" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1359", "reference_id": "RHSA-2011:1359", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1359" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2011:1360", "reference_id": "RHSA-2011:1360", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2011:1360" }, { "reference_url": "https://usn.ubuntu.com/1232-1/", "reference_id": "USN-1232-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1232-1/" }, { "reference_url": "https://usn.ubuntu.com/1232-3/", "reference_id": "USN-1232-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1232-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" } ], "aliases": [ "CVE-2010-4818" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j55v-3y8e-2kf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106697?format=api", "vulnerability_id": "VCID-jrks-xpht-eycq", "summary": "A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14361.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14361.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46046", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46114", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46116", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46094", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869142", "reference_id": "1869142", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869142" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4910", "reference_id": "RHSA-2020:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4953", "reference_id": "RHSA-2020:4953", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4953" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4488-1/", "reference_id": "USN-4488-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-1/" }, { "reference_url": "https://usn.ubuntu.com/4488-2/", "reference_id": "USN-4488-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-14361" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jrks-xpht-eycq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106667?format=api", "vulnerability_id": "VCID-jt46-r94m-v7er", "summary": "The SProcXCMiscGetXIDList function in the XC-MISC extension in X.Org X Window System (aka X11 or X) X11R6.0 and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8096.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8096.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01014", "scoring_system": "epss", "scoring_elements": "0.7749", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01014", "scoring_system": "epss", "scoring_elements": "0.77517", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01014", "scoring_system": "epss", "scoring_elements": "0.77526", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168700", "reference_id": "1168700", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168700" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8096" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jt46-r94m-v7er" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106678?format=api", "vulnerability_id": "VCID-jx8z-exfq-sqcn", "summary": "X.Org Server (aka xserver and xorg-server) before 1.16.3 and 1.17.x before 1.17.1 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (crash) via a crafted string length value in a XkbSetGeometry request.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0255.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-0255.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-0255", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.06422", "scoring_system": "epss", "scoring_elements": "0.91213", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.06422", "scoring_system": "epss", "scoring_elements": "0.91226", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.06422", "scoring_system": "epss", "scoring_elements": "0.91223", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-0255" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0255", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-0255" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1189062", "reference_id": "1189062", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1189062" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2015:0797", "reference_id": "RHSA-2015:0797", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2015:0797" }, { "reference_url": "https://usn.ubuntu.com/2500-1/", "reference_id": "USN-2500-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2500-1/" }, { "reference_url": "https://usn.ubuntu.com/USN-4772-1/", "reference_id": "USN-USN-4772-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/USN-4772-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2015-0255" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.1", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jx8z-exfq-sqcn" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106683?format=api", "vulnerability_id": "VCID-jzxy-vgcy-nbbz", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XFree86 DGA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12181.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12181.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75071", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75075", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509222", "reference_id": "1509222", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509222" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12181" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jzxy-vgcy-nbbz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106682?format=api", "vulnerability_id": "VCID-k29g-v3tn-67bc", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XFree86 VidModeExtension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12180.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12180.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66439", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66407", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66447", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66455", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509221", "reference_id": "1509221", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509221" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12180" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k29g-v3tn-67bc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106690?format=api", "vulnerability_id": "VCID-k3mg-7ndc-sqe7", "summary": "In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts of the X server or replace shared memory segments of other X clients in the same session.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13721.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13721.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23572", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23592", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23655", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23639", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:C" }, { "value": "6.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500387", "reference_id": "1500387", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500387" }, { "reference_url": "https://security.archlinux.org/ASA-201710-10", "reference_id": "ASA-201710-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-10" }, { "reference_url": "https://security.archlinux.org/AVG-432", "reference_id": "AVG-432", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-432" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" }, { "reference_url": "https://usn.ubuntu.com/3453-1/", "reference_id": "USN-3453-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3453-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-13721" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k3mg-7ndc-sqe7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106689?format=api", "vulnerability_id": "VCID-kqe5-6n97-aufv", "summary": "xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12187.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12187.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75144", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75119", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75148", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75151", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509217", "reference_id": "1509217", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509217" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12187" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kqe5-6n97-aufv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99572?format=api", "vulnerability_id": "VCID-ksb1-g8mu-nbhu", "summary": "xorg-x11-server: XvdiSelectVideoNotify use-after-free", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46342.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46342.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32308", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32304", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32376", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32345", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151757", "reference_id": "2151757", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/", "reference_id": "5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2022-46342", "reference_id": "CVE-2022-46342", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2022-46342" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5304", "reference_id": "dsa-5304", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5304" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/", "reference_id": "DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-1/", "reference_id": "USN-5778-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-1/" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/", "reference_id": "Z67QC4C3I2FI2WRFIUPEHKC36J362MLA", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-46342" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ksb1-g8mu-nbhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6499?format=api", "vulnerability_id": "VCID-ksup-ynuw-3kf7", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10971.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10971.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10971", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86277", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86299", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86301", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86297", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10971" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473204", "reference_id": "1473204", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473204" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492", "reference_id": "867492", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492" }, { "reference_url": "https://security.archlinux.org/ASA-201708-11", "reference_id": "ASA-201708-11", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201708-11" }, { "reference_url": "https://security.archlinux.org/AVG-341", "reference_id": "AVG-341", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-341" }, { "reference_url": "https://usn.ubuntu.com/3362-1/", "reference_id": "USN-3362-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3362-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-10971" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ksup-ynuw-3kf7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/77885?format=api", "vulnerability_id": "VCID-ktpn-yv97-nycv", "summary": "Buffer overflow in (1) X.Org Xserver before 1.4.1, and (2) the libfont and libXfont libraries on some platforms including Sun Solaris, allows context-dependent attackers to execute arbitrary code via a PCF font with a large difference between the last col and first col values in the PCF_BDF_ENCODINGS table.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0006.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0006.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2008-0006", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.23908", "scoring_system": "epss", "scoring_elements": "0.96127", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.23908", "scoring_system": "epss", "scoring_elements": "0.96132", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.23908", "scoring_system": "epss", "scoring_elements": "0.96135", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.27606", "scoring_system": "epss", "scoring_elements": "0.96532", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2008-0006" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0006", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0006" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=428044", "reference_id": "428044", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=428044" }, { "reference_url": "https://security.gentoo.org/glsa/200801-09", "reference_id": "GLSA-200801-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200801-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0029", "reference_id": "RHSA-2008:0029", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0029" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0030", "reference_id": "RHSA-2008:0030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0030" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0064", "reference_id": "RHSA-2008:0064", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0064" }, { "reference_url": "https://usn.ubuntu.com/571-1/", "reference_id": "USN-571-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/571-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2008-0006" ], "risk_score": 0.1, "exploitability": "0.5", "weighted_severity": "0.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ktpn-yv97-nycv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/98937?format=api", "vulnerability_id": "VCID-mbyt-8urr-yqff", "summary": "xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0494.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0494.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0494", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72638", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72667", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72677", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72685", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0494" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0494", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0494" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2023-February/003320.html", "reference_id": "003320.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T17:41:52Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2023-February/003320.html" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/0ba6d8c37071131a49790243cdac55392ecf71ec", "reference_id": "0ba6d8c37071131a49790243cdac55392ecf71ec", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T17:41:52Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/0ba6d8c37071131a49790243cdac55392ecf71ec" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030777", "reference_id": "1030777", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030777" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165995", "reference_id": "2165995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T17:41:52Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165995" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T17:41:52Z/" } ], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0622", "reference_id": "RHSA-2023:0622", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0622" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0623", "reference_id": "RHSA-2023:0623", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0662", "reference_id": "RHSA-2023:0662", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0662" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0663", "reference_id": "RHSA-2023:0663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0664", "reference_id": "RHSA-2023:0664", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0664" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0665", "reference_id": "RHSA-2023:0665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0665" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0671", "reference_id": "RHSA-2023:0671", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0671" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0675", "reference_id": "RHSA-2023:0675", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0675" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" }, { "reference_url": "https://usn.ubuntu.com/5846-1/", "reference_id": "USN-5846-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5846-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-0494" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mbyt-8urr-yqff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106659?format=api", "vulnerability_id": "VCID-meuv-tkww-rfeu", "summary": "Use-after-free vulnerability in the doImageText function in dix/dixfonts.c in the xorg-server module before 1.14.4 in X.Org X11 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted ImageText request that triggers memory-allocation failure.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4396.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4396.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4396", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01971", "scoring_system": "epss", "scoring_elements": "0.83862", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01971", "scoring_system": "epss", "scoring_elements": "0.83885", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01971", "scoring_system": "epss", "scoring_elements": "0.83888", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01971", "scoring_system": "epss", "scoring_elements": "0.83883", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-4396" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4396", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4396" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1014561", "reference_id": "1014561", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1014561" }, { "reference_url": "https://security.gentoo.org/glsa/201405-07", "reference_id": "GLSA-201405-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201405-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1426", "reference_id": "RHSA-2013:1426", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1426" }, { "reference_url": "https://usn.ubuntu.com/1990-1/", "reference_id": "USN-1990-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1990-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2013-4396" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-meuv-tkww-rfeu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4865?format=api", "vulnerability_id": "VCID-mxq1-dhbf-9ufb", "summary": "privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2320.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2320.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2320", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19602", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19531", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19558", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19607", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903", "reference_id": "1014903", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106683", "reference_id": "2106683", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106683" }, { "reference_url": "https://security.archlinux.org/AVG-2770", "reference_id": "AVG-2770", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2770" }, { "reference_url": "https://security.gentoo.org/glsa/202210-30", "reference_id": "GLSA-202210-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5905", "reference_id": "RHSA-2022:5905", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5905" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7583", "reference_id": "RHSA-2022:7583", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7583" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8221", "reference_id": "RHSA-2022:8221", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8221" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8222", "reference_id": "RHSA-2022:8222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8222" }, { "reference_url": "https://usn.ubuntu.com/5510-1/", "reference_id": "USN-5510-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5510-1/" }, { "reference_url": "https://usn.ubuntu.com/5510-2/", "reference_id": "USN-5510-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5510-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-2320" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mxq1-dhbf-9ufb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85262?format=api", "vulnerability_id": "VCID-nce7-2t7k-vfdt", "summary": "Xorg: xwayland: Buffer overflow in XkbVModMaskText()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26595.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26595.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26595", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26595" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345257", "reference_id": "2345257", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345257" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26595", "reference_id": "CVE-2025-26595", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26595" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26595" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nce7-2t7k-vfdt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99580?format=api", "vulnerability_id": "VCID-nghe-4hvm-juhp", "summary": "xorg-x11-server: XIChangeProperty out-of-bounds access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46344.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46344.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00867", "scoring_system": "epss", "scoring_elements": "0.75505", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00867", "scoring_system": "epss", "scoring_elements": "0.75533", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00867", "scoring_system": "epss", "scoring_elements": "0.75537", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00867", "scoring_system": "epss", "scoring_elements": "0.75528", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46344" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151760", "reference_id": "2151760", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151760" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-1/", "reference_id": "USN-5778-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-1/" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-46344" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nghe-4hvm-juhp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106686?format=api", "vulnerability_id": "VCID-nrev-k192-pfe8", "summary": "xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12185.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12185.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75071", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75075", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509215", "reference_id": "1509215", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509215" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12185" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nrev-k192-pfe8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106654?format=api", "vulnerability_id": "VCID-p2yg-z8e2-j7f5", "summary": "The LockServer function in os/utils.c in X.Org xserver before 1.11.2 allows local users to change the permissions of arbitrary files to 444, read those files, and possibly cause a denial of service (removed execution permission) via a symlink attack on a temporary lock file.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4029.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4029.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4029", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00866", "scoring_system": "epss", "scoring_elements": "0.75486", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00866", "scoring_system": "epss", "scoring_elements": "0.75515", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00866", "scoring_system": "epss", "scoring_elements": "0.75519", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00866", "scoring_system": "epss", "scoring_elements": "0.75509", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2011-4029" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4029", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4029" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=745024", "reference_id": "745024", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=745024" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/18040.c", "reference_id": "CVE-2011-4613;OSVDB-84058;CVE-2011-4029;OSVDB-76669", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/18040.c" }, { "reference_url": "https://security.gentoo.org/glsa/201110-19", "reference_id": "GLSA-201110-19", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201110-19" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2012:0939", "reference_id": "RHSA-2012:0939", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2012:0939" }, { "reference_url": "https://usn.ubuntu.com/1232-1/", "reference_id": "USN-1232-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1232-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" } ], "aliases": [ "CVE-2011-4029" ], "risk_score": null, "exploitability": "2.0", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-p2yg-z8e2-j7f5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106691?format=api", "vulnerability_id": "VCID-py27-f7s4-ybbq", "summary": "In X.Org Server (aka xserver and xorg-server) before 1.19.4, a local attacker authenticated to the X server could overflow a global buffer, causing crashes of the X server or potentially other problems by injecting large or malformed XKB related atoms and accessing them via xkbcomp.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13723.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13723.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31525", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31521", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31593", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31557", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13723" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:C" }, { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500388", "reference_id": "1500388", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500388" }, { "reference_url": "https://security.archlinux.org/ASA-201710-10", "reference_id": "ASA-201710-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-10" }, { "reference_url": "https://security.archlinux.org/AVG-432", "reference_id": "AVG-432", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-432" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" }, { "reference_url": "https://usn.ubuntu.com/3453-1/", "reference_id": "USN-3453-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3453-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-13723" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-py27-f7s4-ybbq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6498?format=api", "vulnerability_id": "VCID-qmf7-231x-cyaa", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10972.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10972.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10972", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.5734", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57393", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57402", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57391", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10972" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473205", "reference_id": "1473205", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473205" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492", "reference_id": "867492", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492" }, { "reference_url": "https://security.archlinux.org/ASA-201708-11", "reference_id": "ASA-201708-11", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201708-11" }, { "reference_url": "https://security.archlinux.org/AVG-341", "reference_id": "AVG-341", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-341" }, { "reference_url": "https://usn.ubuntu.com/3362-1/", "reference_id": "USN-3362-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3362-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-10972" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qmf7-231x-cyaa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5015?format=api", "vulnerability_id": "VCID-qmrm-2e5f-h3an", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4011.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4011.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12744", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12709", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12659", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12748", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4011" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026074", "reference_id": "2026074", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026074" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" }, { "reference_url": "https://usn.ubuntu.com/5193-1/", "reference_id": "USN-5193-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-1/" }, { "reference_url": "https://usn.ubuntu.com/5193-2/", "reference_id": "USN-5193-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-2/" }, { "reference_url": "https://usn.ubuntu.com/5193-3/", "reference_id": "USN-5193-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2021-4011" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qmrm-2e5f-h3an" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106633?format=api", "vulnerability_id": "VCID-qs4d-hm8w-jfcm", "summary": "The X render (Xrender) extension in X.org X Window System 7.0, 7.1, and 7.2, with Xserver 1.3.0 and earlier, allows remote authenticated users to cause a denial of service (daemon crash) via crafted values to the (1) XRenderCompositeTrapezoids and (2) XRenderAddTraps functions, which trigger a divide-by-zero error.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2437.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2437.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-2437", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03757", "scoring_system": "epss", "scoring_elements": "0.88237", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.03757", "scoring_system": "epss", "scoring_elements": "0.88256", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.03757", "scoring_system": "epss", "scoring_elements": "0.88258", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.03757", "scoring_system": "epss", "scoring_elements": "0.88257", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-2437" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2437", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2437" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=422936", "reference_id": "422936", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=422936" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/29939.txt", "reference_id": "CVE-2007-2437;OSVDB-34905", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/29939.txt" }, { "reference_url": "https://www.securityfocus.com/bid/23741/info", "reference_id": "CVE-2007-2437;OSVDB-34905", "reference_type": "exploit", "scores": [], "url": "https://www.securityfocus.com/bid/23741/info" }, { "reference_url": "https://security.gentoo.org/glsa/201301-01", "reference_id": "GLSA-201301-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201301-01" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2007-2437" ], "risk_score": null, "exploitability": "2.0", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qs4d-hm8w-jfcm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106634?format=api", "vulnerability_id": "VCID-qy7b-jt1s-dbfz", "summary": "Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-4730.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-4730.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-4730", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00097", "scoring_system": "epss", "scoring_elements": "0.26653", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00097", "scoring_system": "epss", "scoring_elements": "0.26756", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00097", "scoring_system": "epss", "scoring_elements": "0.26747", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00097", "scoring_system": "epss", "scoring_elements": "0.26708", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-4730" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4730", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4730" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=285991", "reference_id": "285991", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=285991" }, { "reference_url": "https://security.gentoo.org/glsa/200710-16", "reference_id": "GLSA-200710-16", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200710-16" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2007:0898", "reference_id": "RHSA-2007:0898", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2007:0898" }, { "reference_url": "https://usn.ubuntu.com/514-1/", "reference_id": "USN-514-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/514-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2007-4730" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qy7b-jt1s-dbfz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73075?format=api", "vulnerability_id": "VCID-r8bp-sg6q-sqgj", "summary": "xorg: xmayland: Value overflow in XkbSetCompatMap()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62231.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62231.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62231", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.0288", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02924", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02931", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62231" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2025-October/003635.html", "reference_id": "003635.html", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2025-October/003635.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402660", "reference_id": "2402660", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402660" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-62231", "reference_id": "CVE-2025-62231", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-62231" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19432", "reference_id": "RHSA-2025:19432", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19433", "reference_id": "RHSA-2025:19433", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19433" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19434", "reference_id": "RHSA-2025:19434", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19435", "reference_id": "RHSA-2025:19435", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19435" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19489", "reference_id": "RHSA-2025:19489", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19489" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19623", "reference_id": "RHSA-2025:19623", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19909", "reference_id": "RHSA-2025:19909", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20958", "reference_id": "RHSA-2025:20958", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20960", "reference_id": "RHSA-2025:20960", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20961", "reference_id": "RHSA-2025:20961", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21035", "reference_id": "RHSA-2025:21035", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22040", "reference_id": "RHSA-2025:22040", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22041", "reference_id": "RHSA-2025:22041", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22051", "reference_id": "RHSA-2025:22051", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22055", "reference_id": "RHSA-2025:22055", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22056", "reference_id": "RHSA-2025:22056", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22077", "reference_id": "RHSA-2025:22077", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22096", "reference_id": "RHSA-2025:22096", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22164", "reference_id": "RHSA-2025:22164", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22167", "reference_id": "RHSA-2025:22167", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22364", "reference_id": "RHSA-2025:22364", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22364" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22365", "reference_id": "RHSA-2025:22365", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22365" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22426", "reference_id": "RHSA-2025:22426", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22426" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22427", "reference_id": "RHSA-2025:22427", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22667", "reference_id": "RHSA-2025:22667", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22729", "reference_id": "RHSA-2025:22729", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22742", "reference_id": "RHSA-2025:22742", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22753", "reference_id": "RHSA-2025:22753", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22753" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0031", "reference_id": "RHSA-2026:0031", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0033", "reference_id": "RHSA-2026:0033", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0034", "reference_id": "RHSA-2026:0034", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0035", "reference_id": "RHSA-2026:0035", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0036", "reference_id": "RHSA-2026:0036", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0036" }, { "reference_url": "https://usn.ubuntu.com/7846-1/", "reference_id": "USN-7846-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7846-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-62231" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r8bp-sg6q-sqgj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106642?format=api", "vulnerability_id": "VCID-raeg-4zw3-xbe4", "summary": "Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via (1) a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or (2) a request containing values related to pixmap size that are improperly used in management of shared memory by the MIT-SHM extension.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6429.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6429.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6429", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0227", "scoring_system": "epss", "scoring_elements": "0.84944", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0227", "scoring_system": "epss", "scoring_elements": "0.84968", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0227", "scoring_system": "epss", "scoring_elements": "0.84972", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0227", "scoring_system": "epss", "scoring_elements": "0.84966", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6429" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6429", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6429" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=413721", "reference_id": "413721", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=413721" }, { "reference_url": "https://security.gentoo.org/glsa/200801-09", "reference_id": "GLSA-200801-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200801-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0029", "reference_id": "RHSA-2008:0029", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0029" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0030", "reference_id": "RHSA-2008:0030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0030" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0031", "reference_id": "RHSA-2008:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0031" }, { "reference_url": "https://usn.ubuntu.com/571-1/", "reference_id": "USN-571-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/571-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2007-6429" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-raeg-4zw3-xbe4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85235?format=api", "vulnerability_id": "VCID-rq9m-9qtm-m3bv", "summary": "X.Org: Xwayland: Use-after-free of the root cursor", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26594.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26594.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26594", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26594" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345248", "reference_id": "2345248", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345248" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26594", "reference_id": "CVE-2025-26594", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26594" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26594" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rq9m-9qtm-m3bv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106694?format=api", "vulnerability_id": "VCID-rqjp-d3mr-ykdx", "summary": "A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14346.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14346.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.35814", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.3591", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.3592", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.3588", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862246", "reference_id": "1862246", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862246" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4910", "reference_id": "RHSA-2020:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4953", "reference_id": "RHSA-2020:4953", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4953" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4488-1/", "reference_id": "USN-4488-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-1/" }, { "reference_url": "https://usn.ubuntu.com/4488-2/", "reference_id": "USN-4488-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-14346" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rqjp-d3mr-ykdx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87721?format=api", "vulnerability_id": "VCID-sbxv-5gr6-8be3", "summary": "xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9632.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9632.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-9632", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18088", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18125", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18126", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-9632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9632" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086244", "reference_id": "1086244", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086244" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086245", "reference_id": "1086245", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086245" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2317233", "reference_id": "2317233", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2317233" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-9632", "reference_id": "CVE-2024-9632", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-9632" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:10090", "reference_id": "RHSA-2024:10090", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:10090" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:8798", "reference_id": "RHSA-2024:8798", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:8798" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9540", "reference_id": "RHSA-2024:9540", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9540" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9579", "reference_id": "RHSA-2024:9579", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9579" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9601", "reference_id": "RHSA-2024:9601", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9601" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9690", "reference_id": "RHSA-2024:9690", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9816", "reference_id": "RHSA-2024:9816", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9818", "reference_id": "RHSA-2024:9818", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9818" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9819", "reference_id": "RHSA-2024:9819", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9819" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9820", "reference_id": "RHSA-2024:9820", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9820" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9901", "reference_id": "RHSA-2024:9901", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9901" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7085-1/", "reference_id": "USN-7085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7085-1/" }, { "reference_url": "https://usn.ubuntu.com/7085-2/", "reference_id": "USN-7085-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7085-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2024-9632" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sbxv-5gr6-8be3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106685?format=api", "vulnerability_id": "VCID-skxw-tvv4-rbdr", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12184.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12184.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75071", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75075", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509225", "reference_id": "1509225", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509225" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12184" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-skxw-tvv4-rbdr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6451?format=api", "vulnerability_id": "VCID-ss7u-mzyq-47cg", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12178.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12178.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66455", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66407", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66439", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66447", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509219", "reference_id": "1509219", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509219" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12178" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ss7u-mzyq-47cg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99570?format=api", "vulnerability_id": "VCID-swtg-qd41-pqgw", "summary": "xorg-x11-server: XIPassiveUngrab out-of-bounds access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46341.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46341.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77998", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77974", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.78001", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.78008", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151756", "reference_id": "2151756", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151756" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/", "reference_id": "5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2022-46341", "reference_id": "CVE-2022-46341", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2022-46341" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5304", "reference_id": "dsa-5304", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5304" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/", "reference_id": "DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-1/", "reference_id": "USN-5778-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-1/" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/", "reference_id": "Z67QC4C3I2FI2WRFIUPEHKC36J362MLA", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-46341" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-swtg-qd41-pqgw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91751?format=api", "vulnerability_id": "VCID-t19y-2rhp-23cx", "summary": "xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6478.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6478.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6478", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01113", "scoring_system": "epss", "scoring_elements": "0.78535", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01113", "scoring_system": "epss", "scoring_elements": "0.78543", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01113", "scoring_system": "epss", "scoring_elements": "0.78533", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6377", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6377" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6478" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253298", "reference_id": "2253298", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253298" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7886", "reference_id": "RHSA-2023:7886", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7886" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0006", "reference_id": "RHSA-2024:0006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0009", "reference_id": "RHSA-2024:0009", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0009" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0010", "reference_id": "RHSA-2024:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0014", "reference_id": "RHSA-2024:0014", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0014" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0015", "reference_id": "RHSA-2024:0015", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0015" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0016", "reference_id": "RHSA-2024:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0017", "reference_id": "RHSA-2024:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0018", "reference_id": "RHSA-2024:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0020", "reference_id": "RHSA-2024:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6555-1/", "reference_id": "USN-6555-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6555-1/" }, { "reference_url": "https://usn.ubuntu.com/6555-2/", "reference_id": "USN-6555-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6555-2/" }, { "reference_url": "https://usn.ubuntu.com/6587-5/", "reference_id": "USN-6587-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-5/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-6478" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t19y-2rhp-23cx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/100693?format=api", "vulnerability_id": "VCID-t4ta-czp7-pye5", "summary": "xorg-x11-server: buffer overflow in _GetCountedString() in xkb/xkb.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3550.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3550.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3550", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57477", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.5753", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57539", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57528", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140698", "reference_id": "2140698", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140698" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8491", "reference_id": "RHSA-2022:8491", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8491" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://usn.ubuntu.com/5740-1/", "reference_id": "USN-5740-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5740-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-3550" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t4ta-czp7-pye5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90718?format=api", "vulnerability_id": "VCID-t6z8-cefj-jqa2", "summary": "xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31081.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31081.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31081", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.30979", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31047", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31014", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271998", "reference_id": "2271998", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271998" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-31081", "reference_id": "CVE-2024-31081", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-31081" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1785", "reference_id": "RHSA-2024:1785", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:1785" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2036", "reference_id": "RHSA-2024:2036", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2037", "reference_id": "RHSA-2024:2037", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2038", "reference_id": "RHSA-2024:2038", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2039", "reference_id": "RHSA-2024:2039", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2039" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2040", "reference_id": "RHSA-2024:2040", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2041", "reference_id": "RHSA-2024:2041", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2042", "reference_id": "RHSA-2024:2042", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2080", "reference_id": "RHSA-2024:2080", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2616", "reference_id": "RHSA-2024:2616", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3258", "reference_id": "RHSA-2024:3258", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3261", "reference_id": "RHSA-2024:3261", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3343", "reference_id": "RHSA-2024:3343", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9093", "reference_id": "RHSA-2024:9093", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9122", "reference_id": "RHSA-2024:9122", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9122" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6721-1/", "reference_id": "USN-6721-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6721-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-31081" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t6z8-cefj-jqa2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6450?format=api", "vulnerability_id": "VCID-tuku-xgqr-dfdc", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12183.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12183.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66455", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66407", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66439", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66447", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509224", "reference_id": "1509224", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509224" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12183" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tuku-xgqr-dfdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91481?format=api", "vulnerability_id": "VCID-tzs1-bp73-zycb", "summary": "xorg-x11-server: heap buffer overflow in DisableDevice", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21886.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21886.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47178", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47194", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47197", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-21886" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256542", "reference_id": "2256542", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256542" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-21886", "reference_id": "CVE-2024-21886", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-21886" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6587-1/", "reference_id": "USN-6587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-1/" }, { "reference_url": "https://usn.ubuntu.com/6587-2/", "reference_id": "USN-6587-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-2/" }, { "reference_url": "https://usn.ubuntu.com/6587-5/", "reference_id": "USN-6587-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-5/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-21886" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tzs1-bp73-zycb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6453?format=api", "vulnerability_id": "VCID-umsv-cu6y-r7dy", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12176.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12176.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.76759", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.7672", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.76748", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.76753", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509214", "reference_id": "1509214", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509214" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12176" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-umsv-cu6y-r7dy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6452?format=api", "vulnerability_id": "VCID-vdf6-wkbk-37hb", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12177.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12177.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76691", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76655", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.7668", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76685", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509218", "reference_id": "1509218", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509218" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12177" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vdf6-wkbk-37hb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73009?format=api", "vulnerability_id": "VCID-vs7d-ydc7-w7ec", "summary": "xorg: xmayland: Use-after-free in XPresentNotify structure creation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62229.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62229.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62229", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03891", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03906", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03904", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62229" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2025-October/003635.html", "reference_id": "003635.html", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2025-October/003635.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402649", "reference_id": "2402649", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402649" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-62229", "reference_id": "CVE-2025-62229", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-62229" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19432", "reference_id": "RHSA-2025:19432", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19433", "reference_id": "RHSA-2025:19433", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19433" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19434", "reference_id": "RHSA-2025:19434", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19435", "reference_id": "RHSA-2025:19435", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19435" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19489", "reference_id": "RHSA-2025:19489", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19489" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19623", "reference_id": "RHSA-2025:19623", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19909", "reference_id": "RHSA-2025:19909", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20958", "reference_id": "RHSA-2025:20958", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20960", "reference_id": "RHSA-2025:20960", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20961", "reference_id": "RHSA-2025:20961", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21035", "reference_id": "RHSA-2025:21035", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22040", "reference_id": "RHSA-2025:22040", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22041", "reference_id": "RHSA-2025:22041", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22051", "reference_id": "RHSA-2025:22051", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22055", "reference_id": "RHSA-2025:22055", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22056", "reference_id": "RHSA-2025:22056", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22077", "reference_id": "RHSA-2025:22077", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22096", "reference_id": "RHSA-2025:22096", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22164", "reference_id": "RHSA-2025:22164", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22167", "reference_id": "RHSA-2025:22167", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22364", "reference_id": "RHSA-2025:22364", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22364" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22365", "reference_id": "RHSA-2025:22365", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22365" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22426", "reference_id": "RHSA-2025:22426", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22426" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22427", "reference_id": "RHSA-2025:22427", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22667", "reference_id": "RHSA-2025:22667", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22729", "reference_id": "RHSA-2025:22729", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22742", "reference_id": "RHSA-2025:22742", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22753", "reference_id": "RHSA-2025:22753", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22753" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0031", "reference_id": "RHSA-2026:0031", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0033", "reference_id": "RHSA-2026:0033", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0034", "reference_id": "RHSA-2026:0034", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0035", "reference_id": "RHSA-2026:0035", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0036", "reference_id": "RHSA-2026:0036", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0036" }, { "reference_url": "https://usn.ubuntu.com/7846-1/", "reference_id": "USN-7846-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7846-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-62229" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vs7d-ydc7-w7ec" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106658?format=api", "vulnerability_id": "VCID-vscc-4qb3-3fgd", "summary": "X.Org X server before 1.13.4 and 1.4.x before 1.14.1 does not properly restrict access to input events when adding a new hot-plug device, which might allow physically proximate attackers to obtain sensitive information, as demonstrated by reading passwords from a tty.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1940.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1940.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1940", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.2342", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23502", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23489", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00079", "scoring_system": "epss", "scoring_elements": "0.23442", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-1940" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1940", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1940" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=950438", "reference_id": "950438", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=950438" }, { "reference_url": "https://security.gentoo.org/glsa/201405-07", "reference_id": "GLSA-201405-07", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201405-07" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1620", "reference_id": "RHSA-2013:1620", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1620" }, { "reference_url": "https://usn.ubuntu.com/1803-1/", "reference_id": "USN-1803-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1803-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" } ], "aliases": [ "CVE-2013-1940" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vscc-4qb3-3fgd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106638?format=api", "vulnerability_id": "VCID-vv5c-txda-hkfd", "summary": "The XInput extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6427.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6427.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6427", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0424", "scoring_system": "epss", "scoring_elements": "0.8897", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0424", "scoring_system": "epss", "scoring_elements": "0.88987", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0424", "scoring_system": "epss", "scoring_elements": "0.88986", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2007-6427" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6427", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6427" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=413811", "reference_id": "413811", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=413811" }, { "reference_url": "https://security.gentoo.org/glsa/200801-09", "reference_id": "GLSA-200801-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/200801-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0029", "reference_id": "RHSA-2008:0029", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0029" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0030", "reference_id": "RHSA-2008:0030", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0030" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2008:0031", "reference_id": "RHSA-2008:0031", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2008:0031" }, { "reference_url": "https://usn.ubuntu.com/571-1/", "reference_id": "USN-571-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/571-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4257?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wgpc-s7x8-77at" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.4.2-10.lenny4" } ], "aliases": [ "CVE-2007-6427" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vv5c-txda-hkfd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/97615?format=api", "vulnerability_id": "VCID-w48c-6a3x-7qhd", "summary": "xorg-x11-server: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1393.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1393.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1393", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26029", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26081", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26132", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26126", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1393" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1393", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1393" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://www.openwall.com/lists/oss-security/2023/03/29/1", "reference_id": "1", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://www.openwall.com/lists/oss-security/2023/03/29/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2180288", "reference_id": "2180288", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2180288" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a3373507e88ef64110", "reference_id": "26ef545b3502f61ca722a7a3373507e88ef64110", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a3373507e88ef64110" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BPNQYHUI63DB5FHK6EOI3Z4C6YQZGZKI/", "reference_id": "BPNQYHUI63DB5FHK6EOI3Z4C6YQZGZKI", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BPNQYHUI63DB5FHK6EOI3Z4C6YQZGZKI/" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H3EVO3OQV6T4BSABWZ2TU3PY5TJTEQZ2/", "reference_id": "H3EVO3OQV6T4BSABWZ2TU3PY5TJTEQZ2", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H3EVO3OQV6T4BSABWZ2TU3PY5TJTEQZ2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEHSYYFGBN3G4RS2HJXKQ5NBMOAZ5F2F/", "reference_id": "MEHSYYFGBN3G4RS2HJXKQ5NBMOAZ5F2F", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEHSYYFGBN3G4RS2HJXKQ5NBMOAZ5F2F/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NOYATGGPMT3COC7ELAJW5TG2PVS3AFR2/", "reference_id": "NOYATGGPMT3COC7ELAJW5TG2PVS3AFR2", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NOYATGGPMT3COC7ELAJW5TG2PVS3AFR2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PSAAGI5V77FQXIT5PP4URP6BYQVCK5U5/", "reference_id": "PSAAGI5V77FQXIT5PP4URP6BYQVCK5U5", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PSAAGI5V77FQXIT5PP4URP6BYQVCK5U5/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QHJMSMK7G4GPLMKIGKXIOL2RTKU5VFWE/", "reference_id": "QHJMSMK7G4GPLMKIGKXIOL2RTKU5VFWE", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QHJMSMK7G4GPLMKIGKXIOL2RTKU5VFWE/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1548", "reference_id": "RHSA-2023:1548", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1548" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1549", "reference_id": "RHSA-2023:1549", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1549" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1551", "reference_id": "RHSA-2023:1551", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1551" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1592", "reference_id": "RHSA-2023:1592", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1592" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1594", "reference_id": "RHSA-2023:1594", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1594" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1598", "reference_id": "RHSA-2023:1598", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1598" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1599", "reference_id": "RHSA-2023:1599", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1599" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1600", "reference_id": "RHSA-2023:1600", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1600" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6340", "reference_id": "RHSA-2023:6340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6340" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6341", "reference_id": "RHSA-2023:6341", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6341" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6916", "reference_id": "RHSA-2023:6916", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6916" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6917", "reference_id": "RHSA-2023:6917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6917" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SW2NRC3V53PIBXFPFBVWCOM2MDDILWQS/", "reference_id": "SW2NRC3V53PIBXFPFBVWCOM2MDDILWQS", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SW2NRC3V53PIBXFPFBVWCOM2MDDILWQS/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SWFUDSBSABRHQOX6TIQ5O3SNPFTPFQQP/", "reference_id": "SWFUDSBSABRHQOX6TIQ5O3SNPFTPFQQP", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SWFUDSBSABRHQOX6TIQ5O3SNPFTPFQQP/" }, { "reference_url": "https://usn.ubuntu.com/5986-1/", "reference_id": "USN-5986-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5986-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-1393" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w48c-6a3x-7qhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85253?format=api", "vulnerability_id": "VCID-waxn-nrqv-k7ca", "summary": "xorg: xwayland: Buffer overflow in XkbChangeTypesOfKey()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26597.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26597.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26597" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345255", "reference_id": "2345255", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345255" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26597", "reference_id": "CVE-2025-26597", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26597" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26597" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-waxn-nrqv-k7ca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106649?format=api", "vulnerability_id": "VCID-wgpc-s7x8-77at", "summary": "xvfb-run 1.6.1 in Debian GNU/Linux, Ubuntu, Fedora 10, and possibly other operating systems place the magic cookie (MCOOKIE) on the command line, which allows local users to gain privileges by listing the process and its arguments.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1573.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-1573.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2009-1573", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21736", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21817", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.21805", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00071", "scoring_system": "epss", "scoring_elements": "0.2176", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2009-1573" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1573", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1573" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=499234", "reference_id": "499234", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=499234" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=526678", "reference_id": "526678", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=526678" }, { "reference_url": "https://usn.ubuntu.com/939-1/", "reference_id": "USN-939-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/939-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4258?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.7.7-18", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-563m-twrn-1kg7" }, { "vulnerability": "VCID-5h7m-8559-sqau" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6sfc-pmbw-6ffg" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-96zj-dxw7-jbf1" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-j55v-3y8e-2kf3" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-p2yg-z8e2-j7f5" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-vscc-4qb3-3fgd" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.7.7-18" } ], "aliases": [ "CVE-2009-1573" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wgpc-s7x8-77at" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99575?format=api", "vulnerability_id": "VCID-wrkb-mwhv-wqcc", "summary": "xorg-x11-server: ScreenSaverSetAttributes use-after-free", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46343.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46343.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77998", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77974", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.78001", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.78008", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151758", "reference_id": "2151758", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151758" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/", "reference_id": "5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2022-46343", "reference_id": "CVE-2022-46343", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2022-46343" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5304", "reference_id": "dsa-5304", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5304" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/", "reference_id": "DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-1/", "reference_id": "USN-5778-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-1/" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/", "reference_id": "Z67QC4C3I2FI2WRFIUPEHKC36J362MLA", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-46343" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wrkb-mwhv-wqcc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91497?format=api", "vulnerability_id": "VCID-wv2b-584d-uyc2", "summary": "xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6816.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6816.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03015", "scoring_system": "epss", "scoring_elements": "0.86875", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.03015", "scoring_system": "epss", "scoring_elements": "0.86872", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.03015", "scoring_system": "epss", "scoring_elements": "0.86878", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257691", "reference_id": "2257691", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257691" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-6816", "reference_id": "CVE-2023-6816", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-6816" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6587-1/", "reference_id": "USN-6587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-1/" }, { "reference_url": "https://usn.ubuntu.com/6587-2/", "reference_id": "USN-6587-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-2/" }, { "reference_url": "https://usn.ubuntu.com/6587-5/", "reference_id": "USN-6587-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-5/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-6816" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wv2b-584d-uyc2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92130?format=api", "vulnerability_id": "VCID-xg2s-qrvs-ybca", "summary": "xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5367.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5367.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5367", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20181", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20173", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20133", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5367" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5367", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5367" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5380", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5380" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243091", "reference_id": "2243091", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243091" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6802", "reference_id": "RHSA-2023:6802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6808", "reference_id": "RHSA-2023:6808", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6808" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7373", "reference_id": "RHSA-2023:7373", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7373" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7388", "reference_id": "RHSA-2023:7388", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7405", "reference_id": "RHSA-2023:7405", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7405" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7428", "reference_id": "RHSA-2023:7428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7436", "reference_id": "RHSA-2023:7436", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7436" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7526", "reference_id": "RHSA-2023:7526", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7526" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7533", "reference_id": "RHSA-2023:7533", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7533" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0010", "reference_id": "RHSA-2024:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0128", "reference_id": "RHSA-2024:0128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0128" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6453-1/", "reference_id": "USN-6453-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6453-1/" }, { "reference_url": "https://usn.ubuntu.com/6453-2/", "reference_id": "USN-6453-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6453-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-5367" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xg2s-qrvs-ybca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85258?format=api", "vulnerability_id": "VCID-xq35-8sqg-9fcf", "summary": "xorg: xwayland: Heap overflow in XkbWriteKeySyms()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26596.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26596.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26596", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26596" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345256", "reference_id": "2345256", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345256" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26596", "reference_id": "CVE-2025-26596", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26596" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26596" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xq35-8sqg-9fcf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85240?format=api", "vulnerability_id": "VCID-y5rf-aq67-nbcd", "summary": "xorg: xwayland: Use-after-free in SyncInitTrigger()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26601.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26601.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26601", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26601" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345251", "reference_id": "2345251", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345251" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26601", "reference_id": "CVE-2025-26601", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26601" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26601" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y5rf-aq67-nbcd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85246?format=api", "vulnerability_id": "VCID-yqg5-wy1b-hfgx", "summary": "xorg: xwayland: Use of uninitialized pointer in compRedirectWindow()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26599.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26599.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26599", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26599" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345253", "reference_id": "2345253", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345253" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26599", "reference_id": "CVE-2025-26599", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26599" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26599" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yqg5-wy1b-hfgx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106671?format=api", "vulnerability_id": "VCID-ys3e-5jfb-dfez", "summary": "The Render extension in XFree86 4.0.1, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) ProcRenderQueryVersion, (2) SProcRenderQueryVersion, (3) SProcRenderQueryPictFormats, (4) SProcRenderQueryPictIndexValues, (5) SProcRenderCreatePicture, (6) SProcRenderChangePicture, (7) SProcRenderSetPictureClipRectangles, (8) SProcRenderFreePicture, (9) SProcRenderComposite, (10) SProcRenderScale, (11) SProcRenderCreateGlyphSet, (12) SProcRenderReferenceGlyphSet, (13) SProcRenderFreeGlyphSet, (14) SProcRenderFreeGlyphs, or (15) SProcRenderCompositeGlyphs function.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8100.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8100.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.80046", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.80071", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.80076", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.8007", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168711", "reference_id": "1168711", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168711" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8100" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ys3e-5jfb-dfez" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90717?format=api", "vulnerability_id": "VCID-z2sj-4r7t-3ycm", "summary": "xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31080.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31080.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31080", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.30979", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31047", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31014", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31080" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271997", "reference_id": "2271997", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271997" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-31080", "reference_id": "CVE-2024-31080", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-31080" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1785", "reference_id": "RHSA-2024:1785", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:1785" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2036", "reference_id": "RHSA-2024:2036", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2037", "reference_id": "RHSA-2024:2037", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2038", "reference_id": "RHSA-2024:2038", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2039", "reference_id": "RHSA-2024:2039", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2039" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2040", "reference_id": "RHSA-2024:2040", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2041", "reference_id": "RHSA-2024:2041", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2042", "reference_id": "RHSA-2024:2042", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2080", "reference_id": "RHSA-2024:2080", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2616", "reference_id": "RHSA-2024:2616", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3258", "reference_id": "RHSA-2024:3258", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3261", "reference_id": "RHSA-2024:3261", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3343", "reference_id": "RHSA-2024:3343", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9093", "reference_id": "RHSA-2024:9093", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9122", "reference_id": "RHSA-2024:9122", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9122" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6721-1/", "reference_id": "USN-6721-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6721-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-31080" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z2sj-4r7t-3ycm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80512?format=api", "vulnerability_id": "VCID-z6tv-7fmc-13bw", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in X Resize, Rotate and Reflect (RandR) Extension", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49180.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49180.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49180", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.34811", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.34831", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.34848", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49180" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369981", "reference_id": "2369981", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369981" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/3c3a4b767b16174d3213055947ea7f4f88e10ec6", "reference_id": "3c3a4b767b16174d3213055947ea7f4f88e10ec6", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/3c3a4b767b16174d3213055947ea7f4f88e10ec6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server", "reference_id": "cpe:/o:redhat:rhel_aus:7.7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-49180", "reference_id": "CVE-2025-49180", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-49180" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9964" }, { "reference_url": "https://usn.ubuntu.com/7573-1/", "reference_id": "USN-7573-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-1/" }, { "reference_url": "https://usn.ubuntu.com/7573-2/", "reference_id": "USN-7573-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-49180" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z6tv-7fmc-13bw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80381?format=api", "vulnerability_id": "VCID-zb61-sksa-e3c5", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49175.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49175.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49175", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43774", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43788", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43797", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49175" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49175", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49175" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/0885e0b26225c90534642fe911632ec0779eebee", "reference_id": "0885e0b26225c90534642fe911632ec0779eebee", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/0885e0b26225c90534642fe911632ec0779eebee" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/2024", "reference_id": "2024", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/2024" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369947", "reference_id": "2369947", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369947" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server", "reference_id": "cpe:/o:redhat:rhel_aus:7.7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-49175", "reference_id": "CVE-2025-49175", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-49175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9964" }, { "reference_url": "https://www.x.org/wiki/Development/Security/", "reference_id": "Security", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://www.x.org/wiki/Development/Security/" }, { "reference_url": "https://usn.ubuntu.com/7573-1/", "reference_id": "USN-7573-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-1/" }, { "reference_url": "https://usn.ubuntu.com/7573-2/", "reference_id": "USN-7573-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-49175" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zb61-sksa-e3c5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106669?format=api", "vulnerability_id": "VCID-zckq-n5gm-3qb9", "summary": "The GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allows remote authenticated users to cause a denial of service (out-of-bounds read or write) or possibly execute arbitrary code via a crafted length or index value to the (1) __glXDisp_Render, (2) __glXDisp_RenderLarge, (3) __glXDispSwap_VendorPrivate, (4) __glXDispSwap_VendorPrivateWithReply, (5) set_client_info, (6) __glXDispSwap_SetClientInfoARB, (7) DoSwapInterval, (8) DoGetProgramString, (9) DoGetString, (10) __glXDispSwap_RenderMode, (11) __glXDisp_GetCompressedTexImage, (12) __glXDispSwap_GetCompressedTexImage, (13) __glXDisp_FeedbackBuffer, (14) __glXDispSwap_FeedbackBuffer, (15) __glXDisp_SelectBuffer, (16) __glXDispSwap_SelectBuffer, (17) __glXDisp_Flush, (18) __glXDispSwap_Flush, (19) __glXDisp_Finish, (20) __glXDispSwap_Finish, (21) __glXDisp_ReadPixels, (22) __glXDispSwap_ReadPixels, (23) __glXDisp_GetTexImage, (24) __glXDispSwap_GetTexImage, (25) __glXDisp_GetPolygonStipple, (26) __glXDispSwap_GetPolygonStipple, (27) __glXDisp_GetSeparableFilter, (28) __glXDisp_GetSeparableFilterEXT, (29) __glXDisp_GetConvolutionFilter, (30) __glXDisp_GetConvolutionFilterEXT, (31) __glXDisp_GetHistogram, (32) __glXDisp_GetHistogramEXT, (33) __glXDisp_GetMinmax, (34) __glXDisp_GetMinmaxEXT, (35) __glXDisp_GetColorTable, (36) __glXDisp_GetColorTableSGI, (37) GetSeparableFilter, (38) GetConvolutionFilter, (39) GetHistogram, (40) GetMinmax, or (41) GetColorTable function.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8098.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8098.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77443", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.77471", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0101", "scoring_system": "epss", "scoring_elements": "0.7748", "published_at": "2026-06-06T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168707", "reference_id": "1168707", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168707" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" }, { "reference_url": "https://usn.ubuntu.com/2438-1/", "reference_id": "USN-2438-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2438-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8098" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zckq-n5gm-3qb9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106663?format=api", "vulnerability_id": "VCID-zh42-3rck-93he", "summary": "Multiple integer overflows in the GLX extension in XFree86 4.0, X.Org X Window System (aka X11 or X) X11R6.7, and X.Org Server (aka xserver and xorg-server) before 1.16.3 allow remote authenticated users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted request to the (1) __glXDisp_ReadPixels, (2) __glXDispSwap_ReadPixels, (3) __glXDisp_GetTexImage, (4) __glXDispSwap_GetTexImage, (5) GetSeparableFilter, (6) GetConvolutionFilter, (7) GetHistogram, (8) GetMinmax, (9) GetColorTable, (10) __glXGetAnswerBuffer, (11) __GLX_GET_ANSWER_BUFFER, (12) __glXMap1dReqSize, (13) __glXMap1fReqSize, (14) Map2Size, (15) __glXMap2dReqSize, (16) __glXMap2fReqSize, (17) __glXImageSize, or (18) __glXSeparableFilter2DReqSize function, which triggers an out-of-bounds read or write.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8093.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8093.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.80046", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.80071", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.80076", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01297", "scoring_system": "epss", "scoring_elements": "0.8007", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8091" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8092" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8093" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8094" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8095" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8096" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8097" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8098" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8099" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8100" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8101" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8102" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168688", "reference_id": "1168688", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1168688" }, { "reference_url": "https://security.gentoo.org/glsa/201504-06", "reference_id": "GLSA-201504-06", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201504-06" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1982", "reference_id": "RHSA-2014:1982", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1982" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2014:1983", "reference_id": "RHSA-2014:1983", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2014:1983" }, { "reference_url": "https://usn.ubuntu.com/2436-1/", "reference_id": "USN-2436-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/2436-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4260?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.12.4-6%2Bdeb7u6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-24mx-tgrf-nqa8" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-3tqr-68kv-t3cp" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-47qj-hd74-27h7" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8k3e-h7va-myfg" }, { "vulnerability": "VCID-8unb-tn3a-abe3" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9k4g-mc81-tffe" }, { "vulnerability": "VCID-9kj6-9etk-uudg" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bny6-pyf6-k3ht" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d837-arrp-cyhx" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dbns-h674-n7gm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fdrh-s6h2-buhk" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jt46-r94m-v7er" }, { "vulnerability": "VCID-jx8z-exfq-sqcn" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-meuv-tkww-rfeu" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-ys3e-5jfb-dfez" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zckq-n5gm-3qb9" }, { "vulnerability": "VCID-zh42-3rck-93he" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.12.4-6%252Bdeb7u6" }, { "url": "http://public2.vulnerablecode.io/api/packages/4261?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1" } ], "aliases": [ "CVE-2014-8093" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zh42-3rck-93he" } ], "fixing_vulnerabilities": [], "risk_score": "10.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.1.1-21etch5" }