Package Instance
Lookup for vulnerable packages by Package URL.
GET /api/packages/4262?format=api
{ "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "type": "deb", "namespace": "debian", "name": "xorg-server", "version": "2:1.16.4-1+deb8u2", "qualifiers": {}, "subpath": "", "is_vulnerable": true, "next_non_vulnerable_version": "2:21.1.23-1", "latest_non_vulnerable_version": "2:21.1.23-1", "affected_by_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91480?format=api", "vulnerability_id": "VCID-1hen-4651-9fay", "summary": "xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21885.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21885.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47149", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47194", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47197", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47178", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256540", "reference_id": "2256540", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256540" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-21885", "reference_id": "CVE-2024-21885", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-21885" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-26T16:17:45Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6587-1/", "reference_id": "USN-6587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-1/" }, { "reference_url": "https://usn.ubuntu.com/6587-2/", "reference_id": "USN-6587-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-2/" }, { "reference_url": "https://usn.ubuntu.com/6587-5/", "reference_id": "USN-6587-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-5/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-21885" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1hen-4651-9fay" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5018?format=api", "vulnerability_id": "VCID-1xeu-h1q2-5bfh", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4008.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4008.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22609", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22516", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.2254", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22564", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00074", "scoring_system": "epss", "scoring_elements": "0.22624", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026059", "reference_id": "2026059", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026059" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" }, { "reference_url": "https://usn.ubuntu.com/5193-1/", "reference_id": "USN-5193-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-1/" }, { "reference_url": "https://usn.ubuntu.com/5193-2/", "reference_id": "USN-5193-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-2/" }, { "reference_url": "https://usn.ubuntu.com/5193-3/", "reference_id": "USN-5193-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2021-4008" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-1xeu-h1q2-5bfh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5016?format=api", "vulnerability_id": "VCID-2enj-ds99-9fde", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4010.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4010.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.3907", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.39014", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.38977", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.39041", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00177", "scoring_system": "epss", "scoring_elements": "0.39066", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026073", "reference_id": "2026073", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026073" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" }, { "reference_url": "https://usn.ubuntu.com/5193-1/", "reference_id": "USN-5193-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2021-4010" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-2enj-ds99-9fde" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90719?format=api", "vulnerability_id": "VCID-44pt-tgfg-k3hh", "summary": "xorg-x11-server: Heap buffer overread/data leakage in ProcAppleDRICreatePixmap", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31082.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31082.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31082", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.12913", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.13035", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.13038", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00042", "scoring_system": "epss", "scoring_elements": "0.13", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31082" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31082", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31082" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2024-April/003497.html", "reference_id": "003497.html", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T15:13:28Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2024-April/003497.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271999", "reference_id": "2271999", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T15:13:28Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271999" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-31082", "reference_id": "CVE-2024-31082", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T15:13:28Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-31082" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://usn.ubuntu.com/6721-1/", "reference_id": "USN-6721-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6721-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-31082" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-44pt-tgfg-k3hh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90720?format=api", "vulnerability_id": "VCID-4q3g-1az1-ybd6", "summary": "xorg-x11-server: Use-after-free in ProcRenderAddGlyphs", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31083.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31083.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31083", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26236", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26345", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26337", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00094", "scoring_system": "epss", "scoring_elements": "0.26293", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31083" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272000", "reference_id": "2272000", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272000" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-31083", "reference_id": "CVE-2024-31083", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-31083" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1785", "reference_id": "RHSA-2024:1785", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:1785" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2036", "reference_id": "RHSA-2024:2036", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2037", "reference_id": "RHSA-2024:2037", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2038", "reference_id": "RHSA-2024:2038", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2039", "reference_id": "RHSA-2024:2039", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2039" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2040", "reference_id": "RHSA-2024:2040", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2041", "reference_id": "RHSA-2024:2041", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2042", "reference_id": "RHSA-2024:2042", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2080", "reference_id": "RHSA-2024:2080", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2616", "reference_id": "RHSA-2024:2616", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3258", "reference_id": "RHSA-2024:3258", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3261", "reference_id": "RHSA-2024:3261", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3343", "reference_id": "RHSA-2024:3343", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9093", "reference_id": "RHSA-2024:9093", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9122", "reference_id": "RHSA-2024:9122", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9122" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-04-05T18:36:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6721-1/", "reference_id": "USN-6721-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6721-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-31083" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-4q3g-1az1-ybd6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91745?format=api", "vulnerability_id": "VCID-67p9-ddez-7ka1", "summary": "xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6377.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6377.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6377", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60406", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.6041", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0039", "scoring_system": "epss", "scoring_elements": "0.60398", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00423", "scoring_system": "epss", "scoring_elements": "0.62503", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6377" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6377", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6377" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6478" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253291", "reference_id": "2253291", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253291" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7886", "reference_id": "RHSA-2023:7886", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7886" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0006", "reference_id": "RHSA-2024:0006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0009", "reference_id": "RHSA-2024:0009", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0009" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0010", "reference_id": "RHSA-2024:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0014", "reference_id": "RHSA-2024:0014", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0014" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0015", "reference_id": "RHSA-2024:0015", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0015" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0016", "reference_id": "RHSA-2024:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0017", "reference_id": "RHSA-2024:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0018", "reference_id": "RHSA-2024:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0020", "reference_id": "RHSA-2024:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:13998", "reference_id": "RHSA-2025:13998", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:13998" }, { "reference_url": "https://usn.ubuntu.com/6555-1/", "reference_id": "USN-6555-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6555-1/" }, { "reference_url": "https://usn.ubuntu.com/6555-2/", "reference_id": "USN-6555-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6555-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-6377" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-67p9-ddez-7ka1" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99562?format=api", "vulnerability_id": "VCID-6bnp-kn76-4qdm", "summary": "xorg-x11-server: XTestSwapFakeInput stack overflow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46340.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46340.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01237", "scoring_system": "epss", "scoring_elements": "0.79556", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01237", "scoring_system": "epss", "scoring_elements": "0.79582", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01237", "scoring_system": "epss", "scoring_elements": "0.79588", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01237", "scoring_system": "epss", "scoring_elements": "0.79572", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151755", "reference_id": "2151755", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151755" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-1/", "reference_id": "USN-5778-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-1/" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-46340" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6bnp-kn76-4qdm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92135?format=api", "vulnerability_id": "VCID-6ezy-q9rx-rfdd", "summary": "xorg-x11-server: Use-after-free bug in DestroyWindow", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5380.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5380.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5380", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22774", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22759", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22712", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00075", "scoring_system": "epss", "scoring_elements": "0.22661", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5380" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5367", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5367" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5380", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5380" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2244736", "reference_id": "2244736", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2244736" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7428", "reference_id": "RHSA-2023:7428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2298", "reference_id": "RHSA-2024:2298", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2298" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3067", "reference_id": "RHSA-2024:3067", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:3067" }, { "reference_url": "https://usn.ubuntu.com/6453-1/", "reference_id": "USN-6453-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6453-1/" }, { "reference_url": "https://usn.ubuntu.com/6453-2/", "reference_id": "USN-6453-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6453-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-5380" ], "risk_score": 2.1, "exploitability": "0.5", "weighted_severity": "4.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6ezy-q9rx-rfdd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80411?format=api", "vulnerability_id": "VCID-6t55-ed2e-2bcw", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in Big Requests Extension", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49176.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49176.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49176", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00267", "scoring_system": "epss", "scoring_elements": "0.50374", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00267", "scoring_system": "epss", "scoring_elements": "0.50414", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00267", "scoring_system": "epss", "scoring_elements": "0.50422", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00267", "scoring_system": "epss", "scoring_elements": "0.50403", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49176" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/03731b326a80b582e48d939fe62cb1e2b10400d9", "reference_id": "03731b326a80b582e48d939fe62cb1e2b10400d9", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/03731b326a80b582e48d939fe62cb1e2b10400d9" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108073", "reference_id": "1108073", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108073" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369954", "reference_id": "2369954", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369954" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/4fc4d76b2c7aaed61ed2653f997783a3714c4fe1", "reference_id": "4fc4d76b2c7aaed61ed2653f997783a3714c4fe1", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/4fc4d76b2c7aaed61ed2653f997783a3714c4fe1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server", "reference_id": "cpe:/o:redhat:rhel_aus:7.7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-49176", "reference_id": "CVE-2025-49176", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-49176" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9964" }, { "reference_url": "https://www.x.org/wiki/Development/Security/", "reference_id": "Security", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:58:49Z/" } ], "url": "https://www.x.org/wiki/Development/Security/" }, { "reference_url": "https://usn.ubuntu.com/7573-1/", "reference_id": "USN-7573-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-1/" }, { "reference_url": "https://usn.ubuntu.com/7573-2/", "reference_id": "USN-7573-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-49176" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-6t55-ed2e-2bcw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106699?format=api", "vulnerability_id": "VCID-713b-xwq2-7ych", "summary": "A flaw was found in xorg-x11-server before 1.20.10. A heap-buffer overflow in XkbSetDeviceInfo may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25712.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-25712.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25712", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32452", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32422", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32493", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32453", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00133", "scoring_system": "epss", "scoring_elements": "0.32524", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-25712" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25712" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1887276", "reference_id": "1887276", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1887276" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216", "reference_id": "976216", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216" }, { "reference_url": "https://security.archlinux.org/ASA-202012-6", "reference_id": "ASA-202012-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202012-6" }, { "reference_url": "https://security.archlinux.org/AVG-1310", "reference_id": "AVG-1310", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1310" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5408", "reference_id": "RHSA-2020:5408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4656-1/", "reference_id": "USN-4656-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4656-1/" }, { "reference_url": "https://usn.ubuntu.com/4656-2/", "reference_id": "USN-4656-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4656-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-25712" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-713b-xwq2-7ych" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106684?format=api", "vulnerability_id": "VCID-74jd-1pbz-u7cu", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12182.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12182.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76655", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.7667", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76691", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.7668", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76685", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509223", "reference_id": "1509223", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509223" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12182" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-74jd-1pbz-u7cu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91489?format=api", "vulnerability_id": "VCID-828y-hsz4-tqbe", "summary": "xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0229.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0229.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00295", "scoring_system": "epss", "scoring_elements": "0.53152", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00295", "scoring_system": "epss", "scoring_elements": "0.53133", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00295", "scoring_system": "epss", "scoring_elements": "0.53107", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00295", "scoring_system": "epss", "scoring_elements": "0.53143", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256690", "reference_id": "2256690", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256690" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-0229", "reference_id": "CVE-2024-0229", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-0229" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-02-12T16:50:56Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6587-1/", "reference_id": "USN-6587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-1/" }, { "reference_url": "https://usn.ubuntu.com/6587-2/", "reference_id": "USN-6587-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-2/" }, { "reference_url": "https://usn.ubuntu.com/6587-5/", "reference_id": "USN-6587-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-5/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-0229" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-828y-hsz4-tqbe" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5017?format=api", "vulnerability_id": "VCID-8bbs-eqdc-c7fh", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4009.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4009.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25814", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25709", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25722", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25768", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00091", "scoring_system": "epss", "scoring_elements": "0.25824", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026072", "reference_id": "2026072", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026072" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" }, { "reference_url": "https://usn.ubuntu.com/5193-1/", "reference_id": "USN-5193-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-1/" }, { "reference_url": "https://usn.ubuntu.com/5193-2/", "reference_id": "USN-5193-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-2/" }, { "reference_url": "https://usn.ubuntu.com/5193-3/", "reference_id": "USN-5193-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2021-4009" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8bbs-eqdc-c7fh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73042?format=api", "vulnerability_id": "VCID-8h6n-ntrj-q7g6", "summary": "xorg: xwayland: Use-after-free in Xkb client resource removal", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62230.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62230.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62230", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02863", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02924", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02931", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.0288", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62230" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62230", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62230" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2025-October/003635.html", "reference_id": "003635.html", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2025-October/003635.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402653", "reference_id": "2402653", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402653" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-62230", "reference_id": "CVE-2025-62230", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-62230" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19432", "reference_id": "RHSA-2025:19432", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19433", "reference_id": "RHSA-2025:19433", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19433" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19434", "reference_id": "RHSA-2025:19434", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19435", "reference_id": "RHSA-2025:19435", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19435" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19489", "reference_id": "RHSA-2025:19489", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19489" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19623", "reference_id": "RHSA-2025:19623", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19909", "reference_id": "RHSA-2025:19909", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20958", "reference_id": "RHSA-2025:20958", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20960", "reference_id": "RHSA-2025:20960", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20961", "reference_id": "RHSA-2025:20961", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21035", "reference_id": "RHSA-2025:21035", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22040", "reference_id": "RHSA-2025:22040", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22041", "reference_id": "RHSA-2025:22041", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22051", "reference_id": "RHSA-2025:22051", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22055", "reference_id": "RHSA-2025:22055", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22056", "reference_id": "RHSA-2025:22056", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22077", "reference_id": "RHSA-2025:22077", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22096", "reference_id": "RHSA-2025:22096", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22164", "reference_id": "RHSA-2025:22164", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22167", "reference_id": "RHSA-2025:22167", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22364", "reference_id": "RHSA-2025:22364", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22364" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22365", "reference_id": "RHSA-2025:22365", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22365" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22426", "reference_id": "RHSA-2025:22426", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22426" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22427", "reference_id": "RHSA-2025:22427", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22667", "reference_id": "RHSA-2025:22667", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22729", "reference_id": "RHSA-2025:22729", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22742", "reference_id": "RHSA-2025:22742", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22753", "reference_id": "RHSA-2025:22753", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22753" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0031", "reference_id": "RHSA-2026:0031", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0033", "reference_id": "RHSA-2026:0033", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0034", "reference_id": "RHSA-2026:0034", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0035", "reference_id": "RHSA-2026:0035", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0036", "reference_id": "RHSA-2026:0036", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0036" }, { "reference_url": "https://usn.ubuntu.com/7846-1/", "reference_id": "USN-7846-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7846-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-62230" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-8h6n-ntrj-q7g6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106687?format=api", "vulnerability_id": "VCID-939t-kz1h-k7d6", "summary": "xorg-x11-server before 1.19.5 was missing length validation in X-Resource extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12186.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12186.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.735", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.73516", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.73541", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.73529", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.73536", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509216", "reference_id": "1509216", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509216" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12186" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-939t-kz1h-k7d6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85250?format=api", "vulnerability_id": "VCID-95dx-8w8k-4kfp", "summary": "xorg: xwayland: Out-of-bounds write in CreatePointerBarrierClient()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26598.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26598.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26598", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09396", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09381", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09322", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00031", "scoring_system": "epss", "scoring_elements": "0.09376", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26598" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26598", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26598" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345254", "reference_id": "2345254", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345254" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26598", "reference_id": "CVE-2025-26598", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26598" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:24:04Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26598" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-95dx-8w8k-4kfp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85245?format=api", "vulnerability_id": "VCID-96ga-avmd-kubh", "summary": "xorg: xwayland: Use-after-free in PlayReleasedEvents()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26600.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26600.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26600", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08634", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26600" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26600", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26600" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345252", "reference_id": "2345252", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345252" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26600", "reference_id": "CVE-2025-26600", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26600" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:16:54Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26600" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-96ga-avmd-kubh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6224?format=api", "vulnerability_id": "VCID-97f6-pm5e-8qf3", "summary": "privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14665.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-14665.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-14665", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.16034", "scoring_system": "epss", "scoring_elements": "0.94912", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.16034", "scoring_system": "epss", "scoring_elements": "0.94902", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.16034", "scoring_system": "epss", "scoring_elements": "0.94913", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.16034", "scoring_system": "epss", "scoring_elements": "0.94911", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-14665" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14665", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14665" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1637761", "reference_id": "1637761", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1637761" }, { "reference_url": "https://security.archlinux.org/ASA-201810-15", "reference_id": "ASA-201810-15", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201810-15" }, { "reference_url": "https://security.archlinux.org/AVG-788", "reference_id": "AVG-788", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-788" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/aix/local/45938.pl", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/aix/local/45938.pl" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45832.py", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45832.py" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45697.txt", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45697.txt" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45908.rb", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45908.rb" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45922.sh", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/45922.sh" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/openbsd/local/45742.sh", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/openbsd/local/45742.sh" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/solaris/local/46142.sh", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/solaris/local/46142.sh" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/47701.rb", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/unix/local/47701.rb" }, { "reference_url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/be6cfde92158d2c6716711046536c9f1ca44d958/modules/exploits/multi/local/xorg_x11_suid_server.rb", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/be6cfde92158d2c6716711046536c9f1ca44d958/modules/exploits/multi/local/xorg_x11_suid_server.rb" }, { "reference_url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/aix/local/xorg_x11_server.rb", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/aix/local/xorg_x11_server.rb" }, { "reference_url": "https://twitter.com/hackerfantastic/status/1055517801224396800", "reference_id": "CVE-2018-14665", "reference_type": "exploit", "scores": [], "url": "https://twitter.com/hackerfantastic/status/1055517801224396800" }, { "reference_url": "https://security.gentoo.org/glsa/201810-09", "reference_id": "GLSA-201810-09", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201810-09" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3410", "reference_id": "RHSA-2018:3410", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2018:3410" }, { "reference_url": "https://usn.ubuntu.com/3802-1/", "reference_id": "USN-3802-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3802-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2018-14665" ], "risk_score": 10.0, "exploitability": "2.0", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-97f6-pm5e-8qf3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80475?format=api", "vulnerability_id": "VCID-9pnm-jep8-3bf9", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer overflow in X Record extension", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49179.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49179.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49179", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00184", "scoring_system": "epss", "scoring_elements": "0.39961", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00184", "scoring_system": "epss", "scoring_elements": "0.40013", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00184", "scoring_system": "epss", "scoring_elements": "0.40016", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00184", "scoring_system": "epss", "scoring_elements": "0.39988", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49179" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369978", "reference_id": "2369978", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369978" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/2bde9ca49a8fd9a1e6697d5e7ef837870d66f5d4", "reference_id": "2bde9ca49a8fd9a1e6697d5e7ef837870d66f5d4", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/2bde9ca49a8fd9a1e6697d5e7ef837870d66f5d4" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server", "reference_id": "cpe:/o:redhat:rhel_aus:7.7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-49179", "reference_id": "CVE-2025-49179", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-49179" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9964" }, { "reference_url": "https://www.x.org/wiki/Development/Security/", "reference_id": "Security", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:03:25Z/" } ], "url": "https://www.x.org/wiki/Development/Security/" }, { "reference_url": "https://usn.ubuntu.com/7573-1/", "reference_id": "USN-7573-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-1/" }, { "reference_url": "https://usn.ubuntu.com/7573-2/", "reference_id": "USN-7573-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-49179" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-9pnm-jep8-3bf9" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106698?format=api", "vulnerability_id": "VCID-a2n5-8wwp-87hw", "summary": "A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14362.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14362.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46046", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46114", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46068", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46116", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46094", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14362" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869144", "reference_id": "1869144", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869144" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4910", "reference_id": "RHSA-2020:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4953", "reference_id": "RHSA-2020:4953", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4953" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4488-1/", "reference_id": "USN-4488-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-1/" }, { "reference_url": "https://usn.ubuntu.com/4488-2/", "reference_id": "USN-4488-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-14362" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-a2n5-8wwp-87hw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/100698?format=api", "vulnerability_id": "VCID-bxtg-a4vf-8fau", "summary": "xorg-x11-server: memory leak in ProcXkbGetKbdByName() in xkb/xkb.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3551.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3551.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3551", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0063", "scoring_system": "epss", "scoring_elements": "0.7068", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0063", "scoring_system": "epss", "scoring_elements": "0.70723", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0063", "scoring_system": "epss", "scoring_elements": "0.70701", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0063", "scoring_system": "epss", "scoring_elements": "0.70731", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0063", "scoring_system": "epss", "scoring_elements": "0.70713", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3551" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140701", "reference_id": "2140701", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140701" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8491", "reference_id": "RHSA-2022:8491", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8491" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://usn.ubuntu.com/5740-1/", "reference_id": "USN-5740-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5740-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-3551" ], "risk_score": 3.0, "exploitability": "0.5", "weighted_severity": "5.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-bxtg-a4vf-8fau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91494?format=api", "vulnerability_id": "VCID-czx3-mdx4-hbey", "summary": "xorg-x11-server: SELinux unlabeled GLX PBuffer", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0408.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0408.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04477", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04466", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04431", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00017", "scoring_system": "epss", "scoring_elements": "0.04484", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257689", "reference_id": "2257689", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257689" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-0408", "reference_id": "CVE-2024-0408", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-0408" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T17:14:07Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://usn.ubuntu.com/6587-1/", "reference_id": "USN-6587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-1/" }, { "reference_url": "https://usn.ubuntu.com/6587-2/", "reference_id": "USN-6587-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-2/" }, { "reference_url": "https://usn.ubuntu.com/6587-5/", "reference_id": "USN-6587-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-5/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-0408" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-czx3-mdx4-hbey" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99593?format=api", "vulnerability_id": "VCID-d9am-npf2-jkfm", "summary": "xorg-x11-server: XkbGetKbdByName use-after-free", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4283.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-4283.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.41938", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.41916", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.41992", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.42002", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.002", "scoring_system": "epss", "scoring_elements": "0.41973", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151761", "reference_id": "2151761", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151761" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/", "reference_id": "5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2022-4283", "reference_id": "CVE-2022-4283", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2022-4283" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5304", "reference_id": "dsa-5304", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5304" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/", "reference_id": "DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-1/", "reference_id": "USN-5778-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-1/" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/", "reference_id": "Z67QC4C3I2FI2WRFIUPEHKC36J362MLA", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-14T15:16:33Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-4283" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-d9am-npf2-jkfm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106679?format=api", "vulnerability_id": "VCID-dnsa-z3ck-53dc", "summary": "The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients via vectors involving a UNIX socket.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3164.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3164.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3164", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.2041", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20483", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20471", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20431", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00065", "scoring_system": "epss", "scoring_elements": "0.20363", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2015-3164" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3164", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3164" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1219548", "reference_id": "1219548", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1219548" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788410", "reference_id": "788410", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=788410" }, { "reference_url": "https://security.gentoo.org/glsa/201701-64", "reference_id": "GLSA-201701-64", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201701-64" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" } ], "aliases": [ "CVE-2015-3164" ], "risk_score": null, "exploitability": "0.5", "weighted_severity": "0.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-dnsa-z3ck-53dc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106681?format=api", "vulnerability_id": "VCID-egcx-kc7z-skfq", "summary": "xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S)ProcXIBarrierReleasePointer functions allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12179.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12179.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75053", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75075", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75071", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509220", "reference_id": "1509220", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509220" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12179" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-egcx-kc7z-skfq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106693?format=api", "vulnerability_id": "VCID-ej11-bqxf-7qas", "summary": "A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Out-Of-Bounds access in XkbSetNames function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14345.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14345.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.27491", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.27557", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.27417", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.27506", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00101", "scoring_system": "epss", "scoring_elements": "0.27467", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862241", "reference_id": "1862241", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862241" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4910", "reference_id": "RHSA-2020:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4953", "reference_id": "RHSA-2020:4953", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4953" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4488-2/", "reference_id": "USN-4488-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-2/" }, { "reference_url": "https://usn.ubuntu.com/4490-1/", "reference_id": "USN-4490-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4490-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-14345" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ej11-bqxf-7qas" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4866?format=api", "vulnerability_id": "VCID-f67a-ybc4-x3c2", "summary": "privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2319.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2319", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11235", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11199", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11315", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11282", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00037", "scoring_system": "epss", "scoring_elements": "0.11323", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903", "reference_id": "1014903", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106671", "reference_id": "2106671", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106671" }, { "reference_url": "https://security.archlinux.org/AVG-2770", "reference_id": "AVG-2770", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2770" }, { "reference_url": "https://security.gentoo.org/glsa/202210-30", "reference_id": "GLSA-202210-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5905", "reference_id": "RHSA-2022:5905", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5905" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7583", "reference_id": "RHSA-2022:7583", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7583" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8221", "reference_id": "RHSA-2022:8221", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8221" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8222", "reference_id": "RHSA-2022:8222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8222" }, { "reference_url": "https://usn.ubuntu.com/5510-1/", "reference_id": "USN-5510-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5510-1/" }, { "reference_url": "https://usn.ubuntu.com/5510-2/", "reference_id": "USN-5510-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5510-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-2319" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-f67a-ybc4-x3c2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106696?format=api", "vulnerability_id": "VCID-fm63-7bke-rbe2", "summary": "A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14360.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14360.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14360", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00135", "scoring_system": "epss", "scoring_elements": "0.3308", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00135", "scoring_system": "epss", "scoring_elements": "0.33126", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00135", "scoring_system": "epss", "scoring_elements": "0.33196", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00135", "scoring_system": "epss", "scoring_elements": "0.33158", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00135", "scoring_system": "epss", "scoring_elements": "0.33182", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14360", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14360" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25712", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25712" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869139", "reference_id": "1869139", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869139" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216", "reference_id": "976216", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=976216" }, { "reference_url": "https://security.archlinux.org/ASA-202012-6", "reference_id": "ASA-202012-6", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-202012-6" }, { "reference_url": "https://security.archlinux.org/AVG-1310", "reference_id": "AVG-1310", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1310" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5408", "reference_id": "RHSA-2020:5408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4656-1/", "reference_id": "USN-4656-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4656-1/" }, { "reference_url": "https://usn.ubuntu.com/4656-2/", "reference_id": "USN-4656-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4656-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-14360" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fm63-7bke-rbe2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91496?format=api", "vulnerability_id": "VCID-fr1v-dcuh-jbhs", "summary": "xorg-x11-server: SELinux context corruption", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0409.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0409.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03254", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03211", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03192", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00015", "scoring_system": "epss", "scoring_elements": "0.03245", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257690", "reference_id": "2257690", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257690" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9", "reference_id": "cpe:/o:redhat:enterprise_linux:9", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-0409", "reference_id": "CVE-2024-0409", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-0409" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T16:47:29Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://usn.ubuntu.com/6587-1/", "reference_id": "USN-6587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-1/" }, { "reference_url": "https://usn.ubuntu.com/6587-2/", "reference_id": "USN-6587-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-0409" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-fr1v-dcuh-jbhs" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106700?format=api", "vulnerability_id": "VCID-g9ce-3gn2-ekbh", "summary": "A flaw was found in xorg-x11-server in versions before 1.20.11. An integer underflow can occur in xserver which can lead to a local privilege escalation. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3472.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3472.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3472", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23797", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23917", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.239", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.2385", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00081", "scoring_system": "epss", "scoring_elements": "0.23822", "published_at": "2026-06-04T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-3472" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3472", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3472" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1944167", "reference_id": "1944167", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1944167" }, { "reference_url": "https://security.archlinux.org/AVG-1811", "reference_id": "AVG-1811", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1811" }, { "reference_url": "https://security.archlinux.org/AVG-1812", "reference_id": "AVG-1812", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1812" }, { "reference_url": "https://security.gentoo.org/glsa/202104-02", "reference_id": "GLSA-202104-02", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202104-02" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:2033", "reference_id": "RHSA-2021:2033", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:2033" }, { "reference_url": "https://usn.ubuntu.com/4905-1/", "reference_id": "USN-4905-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4905-1/" }, { "reference_url": "https://usn.ubuntu.com/4905-2/", "reference_id": "USN-4905-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4905-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2021-3472" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-g9ce-3gn2-ekbh" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80443?format=api", "vulnerability_id": "VCID-gq7x-petb-hfau", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Unprocessed Client Request Due to Bytes to Ignore", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49178.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49178.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49178", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45818", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45861", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45865", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00229", "scoring_system": "epss", "scoring_elements": "0.45844", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49178" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369977", "reference_id": "2369977", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369977" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server", "reference_id": "cpe:/o:redhat:rhel_aus:7.7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-49178", "reference_id": "CVE-2025-49178", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-49178" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/d55c54cecb5e83eaa2d56bed5cc4461f9ba318c2", "reference_id": "d55c54cecb5e83eaa2d56bed5cc4461f9ba318c2", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/d55c54cecb5e83eaa2d56bed5cc4461f9ba318c2" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9964" }, { "reference_url": "https://www.x.org/wiki/Development/Security/", "reference_id": "Security", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:05:17Z/" } ], "url": "https://www.x.org/wiki/Development/Security/" }, { "reference_url": "https://usn.ubuntu.com/7573-1/", "reference_id": "USN-7573-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-1/" }, { "reference_url": "https://usn.ubuntu.com/7573-2/", "reference_id": "USN-7573-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-49178" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-gq7x-petb-hfau" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106695?format=api", "vulnerability_id": "VCID-hzef-8edc-hyev", "summary": "A flaw was found in the way xserver memory was not properly initialized. This could leak parts of server memory to the X client. In cases where Xorg server runs with elevated privileges, this could result in possible ASLR bypass. Xorg-server before version 1.20.9 is vulnerable.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14347.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14347.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26971", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.26972", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.2706", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27021", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00098", "scoring_system": "epss", "scoring_elements": "0.27068", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862258", "reference_id": "1862258", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862258" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968986", "reference_id": "968986", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=968986" }, { "reference_url": "https://security.archlinux.org/AVG-1211", "reference_id": "AVG-1211", "reference_type": "", "scores": [ { "value": "Low", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-1211" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:5408", "reference_id": "RHSA-2020:5408", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:5408" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4488-1/", "reference_id": "USN-4488-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-1/" }, { "reference_url": "https://usn.ubuntu.com/4488-2/", "reference_id": "USN-4488-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-14347" ], "risk_score": 2.5, "exploitability": "0.5", "weighted_severity": "5.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-hzef-8edc-hyev" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106692?format=api", "vulnerability_id": "VCID-j463-aw53-kuc4", "summary": "It was found that xorg-x11-server before 1.19.0 including uses memcmp() to check the received MIT cookie against a series of valid cookies. If the cookie is correct, it is allowed to attach to the Xorg session. Since most memcmp() implementations return after an invalid byte is seen, this causes a time difference between a valid and invalid byte, which could allow an efficient brute force attack.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2624.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.9", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2624.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2624", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14713", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14669", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14794", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14752", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00046", "scoring_system": "epss", "scoring_elements": "0.14786", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-2624" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2624", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2624" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:H/Au:N/C:C/I:N/A:N" }, { "value": "5.9", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1424984", "reference_id": "1424984", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1424984" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856398", "reference_id": "856398", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=856398" }, { "reference_url": "https://security.gentoo.org/glsa/201704-03", "reference_id": "GLSA-201704-03", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201704-03" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" }, { "reference_url": "https://usn.ubuntu.com/3362-1/", "reference_id": "USN-3362-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3362-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" } ], "aliases": [ "CVE-2017-2624" ], "risk_score": 2.6, "exploitability": "0.5", "weighted_severity": "5.3", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-j463-aw53-kuc4" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106697?format=api", "vulnerability_id": "VCID-jrks-xpht-eycq", "summary": "A flaw was found in X.Org Server before xorg-x11-server 1.20.9. An Integer underflow leading to heap-buffer overflow may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14361.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14361.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46046", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46114", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46068", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46116", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00232", "scoring_system": "epss", "scoring_elements": "0.46094", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869142", "reference_id": "1869142", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1869142" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4910", "reference_id": "RHSA-2020:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4953", "reference_id": "RHSA-2020:4953", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4953" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4488-1/", "reference_id": "USN-4488-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-1/" }, { "reference_url": "https://usn.ubuntu.com/4488-2/", "reference_id": "USN-4488-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-14361" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jrks-xpht-eycq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106683?format=api", "vulnerability_id": "VCID-jzxy-vgcy-nbbz", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XFree86 DGA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12181.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12181.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75053", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75075", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75071", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509222", "reference_id": "1509222", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509222" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12181" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jzxy-vgcy-nbbz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106682?format=api", "vulnerability_id": "VCID-k29g-v3tn-67bc", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XFree86 VidModeExtension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12180.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12180.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66407", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66425", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66455", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66439", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66447", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509221", "reference_id": "1509221", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509221" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12180" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k29g-v3tn-67bc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106690?format=api", "vulnerability_id": "VCID-k3mg-7ndc-sqe7", "summary": "In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts of the X server or replace shared memory segments of other X clients in the same session.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13721.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13721.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23572", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23538", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23655", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23639", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23592", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:C" }, { "value": "6.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500387", "reference_id": "1500387", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500387" }, { "reference_url": "https://security.archlinux.org/ASA-201710-10", "reference_id": "ASA-201710-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-10" }, { "reference_url": "https://security.archlinux.org/AVG-432", "reference_id": "AVG-432", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-432" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" }, { "reference_url": "https://usn.ubuntu.com/3453-1/", "reference_id": "USN-3453-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3453-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-13721" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k3mg-7ndc-sqe7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106689?format=api", "vulnerability_id": "VCID-kqe5-6n97-aufv", "summary": "xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12187.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12187.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75119", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75131", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75151", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75144", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75148", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509217", "reference_id": "1509217", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509217" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12187" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kqe5-6n97-aufv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99572?format=api", "vulnerability_id": "VCID-ksb1-g8mu-nbhu", "summary": "xorg-x11-server: XvdiSelectVideoNotify use-after-free", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46342.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46342.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32278", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32304", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32376", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32345", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00132", "scoring_system": "epss", "scoring_elements": "0.32308", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151757", "reference_id": "2151757", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151757" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/", "reference_id": "5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2022-46342", "reference_id": "CVE-2022-46342", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2022-46342" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5304", "reference_id": "dsa-5304", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5304" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/", "reference_id": "DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-1/", "reference_id": "USN-5778-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-1/" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/", "reference_id": "Z67QC4C3I2FI2WRFIUPEHKC36J362MLA", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:21:01Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-46342" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ksb1-g8mu-nbhu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6499?format=api", "vulnerability_id": "VCID-ksup-ynuw-3kf7", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10971.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10971.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10971", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86277", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86299", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86285", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86301", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86297", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10971" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473204", "reference_id": "1473204", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473204" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492", "reference_id": "867492", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492" }, { "reference_url": "https://security.archlinux.org/ASA-201708-11", "reference_id": "ASA-201708-11", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201708-11" }, { "reference_url": "https://security.archlinux.org/AVG-341", "reference_id": "AVG-341", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-341" }, { "reference_url": "https://usn.ubuntu.com/3362-1/", "reference_id": "USN-3362-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3362-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-10971" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ksup-ynuw-3kf7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/98937?format=api", "vulnerability_id": "VCID-mbyt-8urr-yqff", "summary": "xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0494.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-0494.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0494", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72638", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72654", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72677", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72685", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00711", "scoring_system": "epss", "scoring_elements": "0.72667", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-0494" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0494", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0494" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2023-February/003320.html", "reference_id": "003320.html", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T17:41:52Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2023-February/003320.html" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/0ba6d8c37071131a49790243cdac55392ecf71ec", "reference_id": "0ba6d8c37071131a49790243cdac55392ecf71ec", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T17:41:52Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/0ba6d8c37071131a49790243cdac55392ecf71ec" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030777", "reference_id": "1030777", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030777" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165995", "reference_id": "2165995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T17:41:52Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165995" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-24T17:41:52Z/" } ], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0622", "reference_id": "RHSA-2023:0622", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0622" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0623", "reference_id": "RHSA-2023:0623", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0662", "reference_id": "RHSA-2023:0662", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0662" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0663", "reference_id": "RHSA-2023:0663", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0663" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0664", "reference_id": "RHSA-2023:0664", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0664" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0665", "reference_id": "RHSA-2023:0665", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0665" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0671", "reference_id": "RHSA-2023:0671", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0671" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0675", "reference_id": "RHSA-2023:0675", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0675" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" }, { "reference_url": "https://usn.ubuntu.com/5846-1/", "reference_id": "USN-5846-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5846-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-0494" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mbyt-8urr-yqff" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/4865?format=api", "vulnerability_id": "VCID-mxq1-dhbf-9ufb", "summary": "privilege escalation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2320.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2320.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2320", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19531", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19489", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19602", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19558", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00062", "scoring_system": "epss", "scoring_elements": "0.19607", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-2320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2319" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2320" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903", "reference_id": "1014903", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014903" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106683", "reference_id": "2106683", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2106683" }, { "reference_url": "https://security.archlinux.org/AVG-2770", "reference_id": "AVG-2770", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2770" }, { "reference_url": "https://security.gentoo.org/glsa/202210-30", "reference_id": "GLSA-202210-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202210-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:5905", "reference_id": "RHSA-2022:5905", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:5905" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:7583", "reference_id": "RHSA-2022:7583", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:7583" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8221", "reference_id": "RHSA-2022:8221", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8221" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8222", "reference_id": "RHSA-2022:8222", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8222" }, { "reference_url": "https://usn.ubuntu.com/5510-1/", "reference_id": "USN-5510-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5510-1/" }, { "reference_url": "https://usn.ubuntu.com/5510-2/", "reference_id": "USN-5510-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5510-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-2320" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-mxq1-dhbf-9ufb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85262?format=api", "vulnerability_id": "VCID-nce7-2t7k-vfdt", "summary": "Xorg: xwayland: Buffer overflow in XkbVModMaskText()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26595.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26595.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26595", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08634", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26595" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26595", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26595" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345257", "reference_id": "2345257", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345257" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26595", "reference_id": "CVE-2025-26595", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26595" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:05:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26595" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nce7-2t7k-vfdt" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99580?format=api", "vulnerability_id": "VCID-nghe-4hvm-juhp", "summary": "xorg-x11-server: XIChangeProperty out-of-bounds access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46344.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46344.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00867", "scoring_system": "epss", "scoring_elements": "0.75505", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00867", "scoring_system": "epss", "scoring_elements": "0.75533", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00867", "scoring_system": "epss", "scoring_elements": "0.75514", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00867", "scoring_system": "epss", "scoring_elements": "0.75537", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00867", "scoring_system": "epss", "scoring_elements": "0.75528", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46344" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151760", "reference_id": "2151760", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151760" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-1/", "reference_id": "USN-5778-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-1/" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-46344" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nghe-4hvm-juhp" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106686?format=api", "vulnerability_id": "VCID-nrev-k192-pfe8", "summary": "xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12185.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12185.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75053", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75075", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75071", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509215", "reference_id": "1509215", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509215" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12185" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nrev-k192-pfe8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106691?format=api", "vulnerability_id": "VCID-py27-f7s4-ybbq", "summary": "In X.Org Server (aka xserver and xorg-server) before 1.19.4, a local attacker authenticated to the X server could overflow a global buffer, causing crashes of the X server or potentially other problems by injecting large or malformed XKB related atoms and accessing them via xkbcomp.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13723.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13723.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31525", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31488", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31593", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31557", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31521", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13723" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:C" }, { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500388", "reference_id": "1500388", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500388" }, { "reference_url": "https://security.archlinux.org/ASA-201710-10", "reference_id": "ASA-201710-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-10" }, { "reference_url": "https://security.archlinux.org/AVG-432", "reference_id": "AVG-432", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-432" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" }, { "reference_url": "https://usn.ubuntu.com/3453-1/", "reference_id": "USN-3453-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3453-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-13723" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-py27-f7s4-ybbq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6498?format=api", "vulnerability_id": "VCID-qmf7-231x-cyaa", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10972.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10972.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10972", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.5734", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57393", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57378", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57402", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57391", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10972" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473205", "reference_id": "1473205", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473205" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492", "reference_id": "867492", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492" }, { "reference_url": "https://security.archlinux.org/ASA-201708-11", "reference_id": "ASA-201708-11", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201708-11" }, { "reference_url": "https://security.archlinux.org/AVG-341", "reference_id": "AVG-341", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-341" }, { "reference_url": "https://usn.ubuntu.com/3362-1/", "reference_id": "USN-3362-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3362-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-10972" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qmf7-231x-cyaa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/5015?format=api", "vulnerability_id": "VCID-qmrm-2e5f-h3an", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4011.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-4011.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12748", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12628", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12659", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12709", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00041", "scoring_system": "epss", "scoring_elements": "0.12744", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2021-4011" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4008" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4009" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4010" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4011" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026074", "reference_id": "2026074", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026074" }, { "reference_url": "https://security.archlinux.org/AVG-2636", "reference_id": "AVG-2636", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2636" }, { "reference_url": "https://security.archlinux.org/AVG-2640", "reference_id": "AVG-2640", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-2640" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:0003", "reference_id": "RHSA-2022:0003", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:0003" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:1917", "reference_id": "RHSA-2022:1917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:1917" }, { "reference_url": "https://usn.ubuntu.com/5193-1/", "reference_id": "USN-5193-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-1/" }, { "reference_url": "https://usn.ubuntu.com/5193-2/", "reference_id": "USN-5193-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-2/" }, { "reference_url": "https://usn.ubuntu.com/5193-3/", "reference_id": "USN-5193-3", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5193-3/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2021-4011" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qmrm-2e5f-h3an" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73075?format=api", "vulnerability_id": "VCID-r8bp-sg6q-sqgj", "summary": "xorg: xmayland: Value overflow in XkbSetCompatMap()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62231.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62231.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62231", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02863", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02924", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.02931", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00014", "scoring_system": "epss", "scoring_elements": "0.0288", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62231" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62231", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62231" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2025-October/003635.html", "reference_id": "003635.html", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2025-October/003635.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402660", "reference_id": "2402660", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402660" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-62231", "reference_id": "CVE-2025-62231", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-62231" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19432", "reference_id": "RHSA-2025:19432", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19433", "reference_id": "RHSA-2025:19433", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19433" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19434", "reference_id": "RHSA-2025:19434", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19435", "reference_id": "RHSA-2025:19435", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19435" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19489", "reference_id": "RHSA-2025:19489", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19489" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19623", "reference_id": "RHSA-2025:19623", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19909", "reference_id": "RHSA-2025:19909", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20958", "reference_id": "RHSA-2025:20958", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20960", "reference_id": "RHSA-2025:20960", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20961", "reference_id": "RHSA-2025:20961", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21035", "reference_id": "RHSA-2025:21035", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22040", "reference_id": "RHSA-2025:22040", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22041", "reference_id": "RHSA-2025:22041", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22051", "reference_id": "RHSA-2025:22051", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22055", "reference_id": "RHSA-2025:22055", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22056", "reference_id": "RHSA-2025:22056", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22077", "reference_id": "RHSA-2025:22077", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22096", "reference_id": "RHSA-2025:22096", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22164", "reference_id": "RHSA-2025:22164", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22167", "reference_id": "RHSA-2025:22167", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22364", "reference_id": "RHSA-2025:22364", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22364" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22365", "reference_id": "RHSA-2025:22365", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22365" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22426", "reference_id": "RHSA-2025:22426", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22426" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22427", "reference_id": "RHSA-2025:22427", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22667", "reference_id": "RHSA-2025:22667", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22729", "reference_id": "RHSA-2025:22729", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22742", "reference_id": "RHSA-2025:22742", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22753", "reference_id": "RHSA-2025:22753", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22753" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0031", "reference_id": "RHSA-2026:0031", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0033", "reference_id": "RHSA-2026:0033", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0034", "reference_id": "RHSA-2026:0034", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0035", "reference_id": "RHSA-2026:0035", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0036", "reference_id": "RHSA-2026:0036", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:34Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0036" }, { "reference_url": "https://usn.ubuntu.com/7846-1/", "reference_id": "USN-7846-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7846-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-62231" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-r8bp-sg6q-sqgj" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85235?format=api", "vulnerability_id": "VCID-rq9m-9qtm-m3bv", "summary": "X.Org: Xwayland: Use-after-free of the root cursor", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26594.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26594.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26594", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08634", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26594" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26594", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26594" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345248", "reference_id": "2345248", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345248" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26594", "reference_id": "CVE-2025-26594", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26594" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T20:13:53Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26594" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rq9m-9qtm-m3bv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106694?format=api", "vulnerability_id": "VCID-rqjp-d3mr-ykdx", "summary": "A flaw was found in xorg-x11-server before 1.20.9. An integer underflow in the X input extension protocol decoding in the X server may lead to arbitrary access of memory contents. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14346.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14346.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.35814", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.3591", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.35839", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.3592", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00154", "scoring_system": "epss", "scoring_elements": "0.3588", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2020-14346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14345" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14346" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14347" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14361" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14362" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862246", "reference_id": "1862246", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1862246" }, { "reference_url": "https://security.gentoo.org/glsa/202012-01", "reference_id": "GLSA-202012-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202012-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4910", "reference_id": "RHSA-2020:4910", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4910" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:4953", "reference_id": "RHSA-2020:4953", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:4953" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2021:1804", "reference_id": "RHSA-2021:1804", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2021:1804" }, { "reference_url": "https://usn.ubuntu.com/4488-1/", "reference_id": "USN-4488-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-1/" }, { "reference_url": "https://usn.ubuntu.com/4488-2/", "reference_id": "USN-4488-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/4488-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" }, { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2020-14346" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-rqjp-d3mr-ykdx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/87721?format=api", "vulnerability_id": "VCID-sbxv-5gr6-8be3", "summary": "xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9632.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9632.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-9632", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18013", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18125", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18126", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00057", "scoring_system": "epss", "scoring_elements": "0.18088", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-9632" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9632", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9632" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086244", "reference_id": "1086244", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086244" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086245", "reference_id": "1086245", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1086245" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2317233", "reference_id": "2317233", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2317233" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7", "reference_id": "cpe:/o:redhat:enterprise_linux:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-9632", "reference_id": "CVE-2024-9632", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-9632" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:10090", "reference_id": "RHSA-2024:10090", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:10090" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:8798", "reference_id": "RHSA-2024:8798", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:8798" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9540", "reference_id": "RHSA-2024:9540", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9540" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9579", "reference_id": "RHSA-2024:9579", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9579" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9601", "reference_id": "RHSA-2024:9601", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9601" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9690", "reference_id": "RHSA-2024:9690", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9690" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9816", "reference_id": "RHSA-2024:9816", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9816" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9818", "reference_id": "RHSA-2024:9818", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9818" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9819", "reference_id": "RHSA-2024:9819", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9819" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9820", "reference_id": "RHSA-2024:9820", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9820" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9901", "reference_id": "RHSA-2024:9901", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9901" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-30T13:34:32Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7085-1/", "reference_id": "USN-7085-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7085-1/" }, { "reference_url": "https://usn.ubuntu.com/7085-2/", "reference_id": "USN-7085-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7085-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2024-9632" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-sbxv-5gr6-8be3" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106685?format=api", "vulnerability_id": "VCID-skxw-tvv4-rbdr", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12184.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12184.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75053", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75075", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75071", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509225", "reference_id": "1509225", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509225" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12184" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-skxw-tvv4-rbdr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6451?format=api", "vulnerability_id": "VCID-ss7u-mzyq-47cg", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12178.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12178.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66455", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66407", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66439", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66425", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66447", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509219", "reference_id": "1509219", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509219" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12178" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ss7u-mzyq-47cg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99570?format=api", "vulnerability_id": "VCID-swtg-qd41-pqgw", "summary": "xorg-x11-server: XIPassiveUngrab out-of-bounds access", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46341.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46341.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77987", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77974", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.78001", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.78008", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77998", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151756", "reference_id": "2151756", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151756" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/", "reference_id": "5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2022-46341", "reference_id": "CVE-2022-46341", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2022-46341" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5304", "reference_id": "dsa-5304", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5304" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/", "reference_id": "DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-1/", "reference_id": "USN-5778-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-1/" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/", "reference_id": "Z67QC4C3I2FI2WRFIUPEHKC36J362MLA", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:53:14Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-46341" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-swtg-qd41-pqgw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91751?format=api", "vulnerability_id": "VCID-t19y-2rhp-23cx", "summary": "xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and RRChangeProviderProperty", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6478.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6478.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6478", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01113", "scoring_system": "epss", "scoring_elements": "0.78535", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01113", "scoring_system": "epss", "scoring_elements": "0.78543", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01113", "scoring_system": "epss", "scoring_elements": "0.78533", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.01208", "scoring_system": "epss", "scoring_elements": "0.79312", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6478" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6377", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6377" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6478", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6478" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253298", "reference_id": "2253298", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253298" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7886", "reference_id": "RHSA-2023:7886", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7886" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0006", "reference_id": "RHSA-2024:0006", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0006" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0009", "reference_id": "RHSA-2024:0009", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0009" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0010", "reference_id": "RHSA-2024:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0014", "reference_id": "RHSA-2024:0014", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0014" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0015", "reference_id": "RHSA-2024:0015", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0015" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0016", "reference_id": "RHSA-2024:0016", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0016" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0017", "reference_id": "RHSA-2024:0017", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0017" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0018", "reference_id": "RHSA-2024:0018", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0018" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0020", "reference_id": "RHSA-2024:0020", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0020" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6555-1/", "reference_id": "USN-6555-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6555-1/" }, { "reference_url": "https://usn.ubuntu.com/6555-2/", "reference_id": "USN-6555-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6555-2/" }, { "reference_url": "https://usn.ubuntu.com/6587-5/", "reference_id": "USN-6587-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-5/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-6478" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t19y-2rhp-23cx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/100693?format=api", "vulnerability_id": "VCID-t4ta-czp7-pye5", "summary": "xorg-x11-server: buffer overflow in _GetCountedString() in xkb/xkb.c", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3550.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-3550.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3550", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57477", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.5753", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57516", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57539", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00346", "scoring_system": "epss", "scoring_elements": "0.57528", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-3550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3550" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-3551" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140698", "reference_id": "2140698", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140698" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2022:8491", "reference_id": "RHSA-2022:8491", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2022:8491" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://usn.ubuntu.com/5740-1/", "reference_id": "USN-5740-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5740-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-3550" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t4ta-czp7-pye5" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90718?format=api", "vulnerability_id": "VCID-t6z8-cefj-jqa2", "summary": "xorg-x11-server: Heap buffer overread/data leakage in ProcXIPassiveGrabDevice", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31081.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31081.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31081", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.30947", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31047", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31014", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.30979", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271998", "reference_id": "2271998", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271998" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-31081", "reference_id": "CVE-2024-31081", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-31081" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1785", "reference_id": "RHSA-2024:1785", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:1785" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2036", "reference_id": "RHSA-2024:2036", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2037", "reference_id": "RHSA-2024:2037", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2038", "reference_id": "RHSA-2024:2038", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2039", "reference_id": "RHSA-2024:2039", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2039" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2040", "reference_id": "RHSA-2024:2040", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2041", "reference_id": "RHSA-2024:2041", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2042", "reference_id": "RHSA-2024:2042", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2080", "reference_id": "RHSA-2024:2080", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2616", "reference_id": "RHSA-2024:2616", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3258", "reference_id": "RHSA-2024:3258", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3261", "reference_id": "RHSA-2024:3261", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3343", "reference_id": "RHSA-2024:3343", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9093", "reference_id": "RHSA-2024:9093", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9122", "reference_id": "RHSA-2024:9122", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9122" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-04T16:37:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6721-1/", "reference_id": "USN-6721-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6721-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-31081" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-t6z8-cefj-jqa2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6450?format=api", "vulnerability_id": "VCID-tuku-xgqr-dfdc", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12183.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12183.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66455", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66407", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66439", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66425", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66447", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509224", "reference_id": "1509224", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509224" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12183" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tuku-xgqr-dfdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91481?format=api", "vulnerability_id": "VCID-tzs1-bp73-zycb", "summary": "xorg-x11-server: heap buffer overflow in DisableDevice", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21886.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-21886.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47149", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47194", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47197", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00239", "scoring_system": "epss", "scoring_elements": "0.47178", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-21886" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256542", "reference_id": "2256542", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256542" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-21886", "reference_id": "CVE-2024-21886", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-21886" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-23T21:47:31Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6587-1/", "reference_id": "USN-6587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-1/" }, { "reference_url": "https://usn.ubuntu.com/6587-2/", "reference_id": "USN-6587-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-2/" }, { "reference_url": "https://usn.ubuntu.com/6587-5/", "reference_id": "USN-6587-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-5/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-21886" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tzs1-bp73-zycb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6453?format=api", "vulnerability_id": "VCID-umsv-cu6y-r7dy", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12176.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12176.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.76759", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.7672", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.76748", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.76737", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.76753", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509214", "reference_id": "1509214", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509214" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12176" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-umsv-cu6y-r7dy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6452?format=api", "vulnerability_id": "VCID-vdf6-wkbk-37hb", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12177.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12177.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76691", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76655", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.7668", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.7667", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76685", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509218", "reference_id": "1509218", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509218" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12177" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vdf6-wkbk-37hb" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/73009?format=api", "vulnerability_id": "VCID-vs7d-ydc7-w7ec", "summary": "xorg: xmayland: Use-after-free in XPresentNotify structure creation", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62229.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-62229.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62229", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03867", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03906", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03904", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00016", "scoring_system": "epss", "scoring_elements": "0.03891", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-62229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-62229" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.x.org/archives/xorg-announce/2025-October/003635.html", "reference_id": "003635.html", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://lists.x.org/archives/xorg-announce/2025-October/003635.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402649", "reference_id": "2402649", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2402649" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1", "reference_id": "cpe:/o:redhat:enterprise_linux:10.1", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-62229", "reference_id": "CVE-2025-62229", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-62229" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19432", "reference_id": "RHSA-2025:19432", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19432" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19433", "reference_id": "RHSA-2025:19433", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19433" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19434", "reference_id": "RHSA-2025:19434", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19434" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19435", "reference_id": "RHSA-2025:19435", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19435" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19489", "reference_id": "RHSA-2025:19489", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19489" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19623", "reference_id": "RHSA-2025:19623", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19623" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:19909", "reference_id": "RHSA-2025:19909", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:19909" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20958", "reference_id": "RHSA-2025:20958", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20958" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20960", "reference_id": "RHSA-2025:20960", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20960" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:20961", "reference_id": "RHSA-2025:20961", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:20961" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:21035", "reference_id": "RHSA-2025:21035", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:21035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22040", "reference_id": "RHSA-2025:22040", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22041", "reference_id": "RHSA-2025:22041", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22051", "reference_id": "RHSA-2025:22051", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22051" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22055", "reference_id": "RHSA-2025:22055", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22055" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22056", "reference_id": "RHSA-2025:22056", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22056" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22077", "reference_id": "RHSA-2025:22077", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22077" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22096", "reference_id": "RHSA-2025:22096", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22096" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22164", "reference_id": "RHSA-2025:22164", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22164" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22167", "reference_id": "RHSA-2025:22167", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22167" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22364", "reference_id": "RHSA-2025:22364", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22364" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22365", "reference_id": "RHSA-2025:22365", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22365" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22426", "reference_id": "RHSA-2025:22426", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22426" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22427", "reference_id": "RHSA-2025:22427", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22427" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22667", "reference_id": "RHSA-2025:22667", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22667" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22729", "reference_id": "RHSA-2025:22729", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22742", "reference_id": "RHSA-2025:22742", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22742" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:22753", "reference_id": "RHSA-2025:22753", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:22753" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0031", "reference_id": "RHSA-2026:0031", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0031" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0033", "reference_id": "RHSA-2026:0033", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0033" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0034", "reference_id": "RHSA-2026:0034", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0034" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0035", "reference_id": "RHSA-2026:0035", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0035" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2026:0036", "reference_id": "RHSA-2026:0036", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-10-31T03:55:33Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2026:0036" }, { "reference_url": "https://usn.ubuntu.com/7846-1/", "reference_id": "USN-7846-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7846-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-62229" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vs7d-ydc7-w7ec" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/97615?format=api", "vulnerability_id": "VCID-w48c-6a3x-7qhd", "summary": "xorg-x11-server: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1393.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-1393.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1393", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26029", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26024", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26132", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26126", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00093", "scoring_system": "epss", "scoring_elements": "0.26081", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-1393" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1393", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1393" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://www.openwall.com/lists/oss-security/2023/03/29/1", "reference_id": "1", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://www.openwall.com/lists/oss-security/2023/03/29/1" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2180288", "reference_id": "2180288", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2180288" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a3373507e88ef64110", "reference_id": "26ef545b3502f61ca722a7a3373507e88ef64110", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/26ef545b3502f61ca722a7a3373507e88ef64110" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BPNQYHUI63DB5FHK6EOI3Z4C6YQZGZKI/", "reference_id": "BPNQYHUI63DB5FHK6EOI3Z4C6YQZGZKI", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BPNQYHUI63DB5FHK6EOI3Z4C6YQZGZKI/" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H3EVO3OQV6T4BSABWZ2TU3PY5TJTEQZ2/", "reference_id": "H3EVO3OQV6T4BSABWZ2TU3PY5TJTEQZ2", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H3EVO3OQV6T4BSABWZ2TU3PY5TJTEQZ2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEHSYYFGBN3G4RS2HJXKQ5NBMOAZ5F2F/", "reference_id": "MEHSYYFGBN3G4RS2HJXKQ5NBMOAZ5F2F", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MEHSYYFGBN3G4RS2HJXKQ5NBMOAZ5F2F/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NOYATGGPMT3COC7ELAJW5TG2PVS3AFR2/", "reference_id": "NOYATGGPMT3COC7ELAJW5TG2PVS3AFR2", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NOYATGGPMT3COC7ELAJW5TG2PVS3AFR2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PSAAGI5V77FQXIT5PP4URP6BYQVCK5U5/", "reference_id": "PSAAGI5V77FQXIT5PP4URP6BYQVCK5U5", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PSAAGI5V77FQXIT5PP4URP6BYQVCK5U5/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QHJMSMK7G4GPLMKIGKXIOL2RTKU5VFWE/", "reference_id": "QHJMSMK7G4GPLMKIGKXIOL2RTKU5VFWE", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QHJMSMK7G4GPLMKIGKXIOL2RTKU5VFWE/" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1548", "reference_id": "RHSA-2023:1548", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1548" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1549", "reference_id": "RHSA-2023:1549", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1549" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1551", "reference_id": "RHSA-2023:1551", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1551" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1592", "reference_id": "RHSA-2023:1592", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1592" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1594", "reference_id": "RHSA-2023:1594", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1594" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1598", "reference_id": "RHSA-2023:1598", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1598" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1599", "reference_id": "RHSA-2023:1599", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1599" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:1600", "reference_id": "RHSA-2023:1600", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:1600" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6340", "reference_id": "RHSA-2023:6340", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6340" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6341", "reference_id": "RHSA-2023:6341", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6341" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6916", "reference_id": "RHSA-2023:6916", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6916" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6917", "reference_id": "RHSA-2023:6917", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6917" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SW2NRC3V53PIBXFPFBVWCOM2MDDILWQS/", "reference_id": "SW2NRC3V53PIBXFPFBVWCOM2MDDILWQS", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SW2NRC3V53PIBXFPFBVWCOM2MDDILWQS/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SWFUDSBSABRHQOX6TIQ5O3SNPFTPFQQP/", "reference_id": "SWFUDSBSABRHQOX6TIQ5O3SNPFTPFQQP", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-14T15:42:21Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SWFUDSBSABRHQOX6TIQ5O3SNPFTPFQQP/" }, { "reference_url": "https://usn.ubuntu.com/5986-1/", "reference_id": "USN-5986-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5986-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-1393" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-w48c-6a3x-7qhd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85253?format=api", "vulnerability_id": "VCID-waxn-nrqv-k7ca", "summary": "xorg: xwayland: Buffer overflow in XkbChangeTypesOfKey()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26597.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26597.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26597", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08634", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26597" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26597", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26597" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345255", "reference_id": "2345255", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345255" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26597", "reference_id": "CVE-2025-26597", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26597" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:39:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26597" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-waxn-nrqv-k7ca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/99575?format=api", "vulnerability_id": "VCID-wrkb-mwhv-wqcc", "summary": "xorg-x11-server: ScreenSaverSetAttributes use-after-free", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46343.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-46343.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77987", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77974", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.78001", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.78008", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.01059", "scoring_system": "epss", "scoring_elements": "0.77998", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-4283" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46340" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46341" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46342" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46343" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-46344" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071", "reference_id": "1026071", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1026071" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151758", "reference_id": "2151758", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151758" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/", "reference_id": "5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5NELB7YDWRABYYBG4UPTHRBDTKJRV5M2/" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2022-46343", "reference_id": "CVE-2022-46343", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2022-46343" }, { "reference_url": "https://www.debian.org/security/2022/dsa-5304", "reference_id": "dsa-5304", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://www.debian.org/security/2022/dsa-5304" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/", "reference_id": "DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DXDF2O5PPLE3SVAJJYUOSAD5QZ4TWQ2G/" }, { "reference_url": "https://security.gentoo.org/glsa/202305-30", "reference_id": "GLSA-202305-30", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://security.gentoo.org/glsa/202305-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0045", "reference_id": "RHSA-2023:0045", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0045" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:0046", "reference_id": "RHSA-2023:0046", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:0046" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2248", "reference_id": "RHSA-2023:2248", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2248" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2249", "reference_id": "RHSA-2023:2249", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2249" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2257", "reference_id": "RHSA-2023:2257", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2257" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2805", "reference_id": "RHSA-2023:2805", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2805" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2806", "reference_id": "RHSA-2023:2806", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2806" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:2830", "reference_id": "RHSA-2023:2830", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:2830" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/5778-1/", "reference_id": "USN-5778-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-1/" }, { "reference_url": "https://usn.ubuntu.com/5778-2/", "reference_id": "USN-5778-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/5778-2/" }, { "reference_url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/", "reference_id": "Z67QC4C3I2FI2WRFIUPEHKC36J362MLA", "reference_type": "", "scores": [ { "value": "8.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-22T15:13:50Z/" } ], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Z67QC4C3I2FI2WRFIUPEHKC36J362MLA/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2022-46343" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "7.9", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wrkb-mwhv-wqcc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/91497?format=api", "vulnerability_id": "VCID-wv2b-584d-uyc2", "summary": "xorg-x11-server: Heap buffer overflow in DeviceFocusEvent and ProcXIQueryPointer", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6816.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6816.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.03015", "scoring_system": "epss", "scoring_elements": "0.86875", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.03015", "scoring_system": "epss", "scoring_elements": "0.86872", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.03015", "scoring_system": "epss", "scoring_elements": "0.86862", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.03015", "scoring_system": "epss", "scoring_elements": "0.86878", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6816" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0229" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0408" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0409" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21885" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-21886" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "8.4", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257691", "reference_id": "2257691", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257691" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2023-6816", "reference_id": "CVE-2023-6816", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2023-6816" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0320", "reference_id": "RHSA-2024:0320", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0320" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0557", "reference_id": "RHSA-2024:0557", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0557" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0558", "reference_id": "RHSA-2024:0558", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0558" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0597", "reference_id": "RHSA-2024:0597", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0597" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0607", "reference_id": "RHSA-2024:0607", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0607" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0614", "reference_id": "RHSA-2024:0614", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0614" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0617", "reference_id": "RHSA-2024:0617", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0617" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0621", "reference_id": "RHSA-2024:0621", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0621" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0626", "reference_id": "RHSA-2024:0626", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0626" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0629", "reference_id": "RHSA-2024:0629", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:0629" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-01-18T14:05:47Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6587-1/", "reference_id": "USN-6587-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-1/" }, { "reference_url": "https://usn.ubuntu.com/6587-2/", "reference_id": "USN-6587-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-2/" }, { "reference_url": "https://usn.ubuntu.com/6587-5/", "reference_id": "USN-6587-5", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6587-5/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-6816" ], "risk_score": 4.4, "exploitability": "0.5", "weighted_severity": "8.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-wv2b-584d-uyc2" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/92130?format=api", "vulnerability_id": "VCID-xg2s-qrvs-ybca", "summary": "xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5367.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-5367.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5367", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20181", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20173", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20133", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00064", "scoring_system": "epss", "scoring_elements": "0.20066", "published_at": "2026-06-08T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2023-5367" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5367", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5367" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5380", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5380" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243091", "reference_id": "2243091", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243091" }, { "reference_url": "https://security.gentoo.org/glsa/202401-30", "reference_id": "GLSA-202401-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202401-30" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6802", "reference_id": "RHSA-2023:6802", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6802" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:6808", "reference_id": "RHSA-2023:6808", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:6808" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7373", "reference_id": "RHSA-2023:7373", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7373" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7388", "reference_id": "RHSA-2023:7388", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7388" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7405", "reference_id": "RHSA-2023:7405", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7405" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7428", "reference_id": "RHSA-2023:7428", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7428" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7436", "reference_id": "RHSA-2023:7436", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7436" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7526", "reference_id": "RHSA-2023:7526", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7526" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2023:7533", "reference_id": "RHSA-2023:7533", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2023:7533" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0010", "reference_id": "RHSA-2024:0010", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0010" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:0128", "reference_id": "RHSA-2024:0128", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:0128" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2169", "reference_id": "RHSA-2024:2169", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2169" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2170", "reference_id": "RHSA-2024:2170", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2170" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2995", "reference_id": "RHSA-2024:2995", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2995" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2996", "reference_id": "RHSA-2024:2996", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2024:2996" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6453-1/", "reference_id": "USN-6453-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6453-1/" }, { "reference_url": "https://usn.ubuntu.com/6453-2/", "reference_id": "USN-6453-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6453-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2023-5367" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xg2s-qrvs-ybca" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85258?format=api", "vulnerability_id": "VCID-xq35-8sqg-9fcf", "summary": "xorg: xwayland: Heap overflow in XkbWriteKeySyms()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26596.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26596.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26596", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08634", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26596" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26596", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26596" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345256", "reference_id": "2345256", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345256" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26596", "reference_id": "CVE-2025-26596", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26596" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T17:14:01Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26596" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-xq35-8sqg-9fcf" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85240?format=api", "vulnerability_id": "VCID-y5rf-aq67-nbcd", "summary": "xorg: xwayland: Use-after-free in SyncInitTrigger()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26601.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26601.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26601", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08634", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26601" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26601", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26601" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345251", "reference_id": "2345251", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345251" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26601", "reference_id": "CVE-2025-26601", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26601" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:08:41Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26601" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-y5rf-aq67-nbcd" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/85246?format=api", "vulnerability_id": "VCID-yqg5-wy1b-hfgx", "summary": "xorg: xwayland: Use of uninitialized pointer in compRedirectWindow()", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26599.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-26599.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26599", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08702", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08682", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08634", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00029", "scoring_system": "epss", "scoring_elements": "0.08686", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-26599" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26599", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26599" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906", "reference_id": "1098906", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098906" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907", "reference_id": "1098907", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098907" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345253", "reference_id": "2345253", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2345253" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8", "reference_id": "cpe:/o:redhat:enterprise_linux:8", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-26599", "reference_id": "CVE-2025-26599", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-26599" }, { "reference_url": "https://security.gentoo.org/glsa/202506-04", "reference_id": "GLSA-202506-04", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202506-04" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2500", "reference_id": "RHSA-2025:2500", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2500" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2502", "reference_id": "RHSA-2025:2502", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2502" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2861", "reference_id": "RHSA-2025:2861", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2861" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2862", "reference_id": "RHSA-2025:2862", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2862" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2865", "reference_id": "RHSA-2025:2865", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2865" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2866", "reference_id": "RHSA-2025:2866", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2866" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2873", "reference_id": "RHSA-2025:2873", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2873" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2874", "reference_id": "RHSA-2025:2874", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2874" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2875", "reference_id": "RHSA-2025:2875", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2875" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2879", "reference_id": "RHSA-2025:2879", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2879" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:2880", "reference_id": "RHSA-2025:2880", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:2880" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:3976", "reference_id": "RHSA-2025:3976", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:3976" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7163", "reference_id": "RHSA-2025:7163", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7163" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7165", "reference_id": "RHSA-2025:7165", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7165" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:7458", "reference_id": "RHSA-2025:7458", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-02-25T16:22:35Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:7458" }, { "reference_url": "https://usn.ubuntu.com/7299-1/", "reference_id": "USN-7299-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-1/" }, { "reference_url": "https://usn.ubuntu.com/7299-2/", "reference_id": "USN-7299-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-2/" }, { "reference_url": "https://usn.ubuntu.com/7299-4/", "reference_id": "USN-7299-4", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7299-4/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-26599" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-yqg5-wy1b-hfgx" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/90717?format=api", "vulnerability_id": "VCID-z2sj-4r7t-3ycm", "summary": "xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31080.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-31080.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31080", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.30947", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31047", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.31014", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00123", "scoring_system": "epss", "scoring_elements": "0.30979", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2024-31080" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31080" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31081" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-31083" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.6", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271997", "reference_id": "2271997", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271997" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10", "reference_id": "cpe:/o:redhat:enterprise_linux:10", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client", "reference_id": "cpe:/o:redhat:enterprise_linux:7::client", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::client" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode", "reference_id": "cpe:/o:redhat:enterprise_linux:7::computenode", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::computenode" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server", "reference_id": "cpe:/o:redhat:enterprise_linux:7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation", "reference_id": "cpe:/o:redhat:enterprise_linux:7::workstation", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7::workstation" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2024-31080", "reference_id": "CVE-2024-31080", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2024-31080" }, { "reference_url": "https://security.gentoo.org/glsa/202411-08", "reference_id": "GLSA-202411-08", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202411-08" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:1785", "reference_id": "RHSA-2024:1785", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:1785" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2036", "reference_id": "RHSA-2024:2036", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2036" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2037", "reference_id": "RHSA-2024:2037", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2037" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2038", "reference_id": "RHSA-2024:2038", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2038" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2039", "reference_id": "RHSA-2024:2039", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2039" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2040", "reference_id": "RHSA-2024:2040", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2040" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2041", "reference_id": "RHSA-2024:2041", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2041" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2042", "reference_id": "RHSA-2024:2042", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2042" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2080", "reference_id": "RHSA-2024:2080", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2080" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:2616", "reference_id": "RHSA-2024:2616", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:2616" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3258", "reference_id": "RHSA-2024:3258", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3261", "reference_id": "RHSA-2024:3261", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3261" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:3343", "reference_id": "RHSA-2024:3343", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:3343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9093", "reference_id": "RHSA-2024:9093", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9093" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2024:9122", "reference_id": "RHSA-2024:9122", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2024:9122" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:12751", "reference_id": "RHSA-2025:12751", "reference_type": "", "scores": [ { "value": "7.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-08-07T15:41:05Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:12751" }, { "reference_url": "https://usn.ubuntu.com/6721-1/", "reference_id": "USN-6721-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/6721-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509649?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.11-1%2Bdeb11u13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-8mr3-m631-ykff" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-mksc-f652-2qcd" }, { "vulnerability": "VCID-mux3-jggq-bqej" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-ucf1-81as-eucj" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-xsha-wn9z-4fg2" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-ydth-wf4d-zugb" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.11-1%252Bdeb11u13" } ], "aliases": [ "CVE-2024-31080" ], "risk_score": 3.3, "exploitability": "0.5", "weighted_severity": "6.6", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z2sj-4r7t-3ycm" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80512?format=api", "vulnerability_id": "VCID-z6tv-7fmc-13bw", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in X Resize, Rotate and Reflect (RandR) Extension", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49180.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49180.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49180", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.34776", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.34831", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.34848", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00147", "scoring_system": "epss", "scoring_elements": "0.34811", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49180" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369981", "reference_id": "2369981", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369981" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/3c3a4b767b16174d3213055947ea7f4f88e10ec6", "reference_id": "3c3a4b767b16174d3213055947ea7f4f88e10ec6", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/3c3a4b767b16174d3213055947ea7f4f88e10ec6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server", "reference_id": "cpe:/o:redhat:rhel_aus:7.7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-49180", "reference_id": "CVE-2025-49180", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-49180" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T15:36:37Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9964" }, { "reference_url": "https://usn.ubuntu.com/7573-1/", "reference_id": "USN-7573-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-1/" }, { "reference_url": "https://usn.ubuntu.com/7573-2/", "reference_id": "USN-7573-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-49180" ], "risk_score": 3.5, "exploitability": "0.5", "weighted_severity": "7.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-z6tv-7fmc-13bw" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/80381?format=api", "vulnerability_id": "VCID-zb61-sksa-e3c5", "summary": "xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49175.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-49175.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49175", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43739", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43788", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43797", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00212", "scoring_system": "epss", "scoring_elements": "0.43774", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-49175" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49175", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49175" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/0885e0b26225c90534642fe911632ec0779eebee", "reference_id": "0885e0b26225c90534642fe911632ec0779eebee", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/commit/0885e0b26225c90534642fe911632ec0779eebee" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369", "reference_id": "1108369", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1108369" }, { "reference_url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/2024", "reference_id": "2024", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://gitlab.freedesktop.org/xorg/xserver/-/merge_requests/2024" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369947", "reference_id": "2369947", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369947" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:8::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream", "reference_id": "cpe:/a:redhat:enterprise_linux:9::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb", "reference_id": "cpe:/a:redhat:enterprise_linux:9::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_aus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_aus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.0::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.0::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_id": "cpe:/a:redhat:rhel_e4s:9.2::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_e4s:9.2::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb", "reference_id": "cpe:/a:redhat:rhel_eus:9.4::crb", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.4::crb" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.4::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_eus_long_life:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus_long_life:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.6::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.6::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_id": "cpe:/a:redhat:rhel_tus:8.8::appstream", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_tus:8.8::appstream" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0", "reference_id": "cpe:/o:redhat:enterprise_linux:10.0", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.0" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6", "reference_id": "cpe:/o:redhat:enterprise_linux:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server", "reference_id": "cpe:/o:redhat:rhel_aus:7.7::server", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_aus:7.7::server" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6", "reference_id": "cpe:/o:redhat:rhel_els:6", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:6" }, { "reference_url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7", "reference_id": "cpe:/o:redhat:rhel_els:7", "reference_type": "", "scores": [], "url": "https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:rhel_els:7" }, { "reference_url": "https://access.redhat.com/security/cve/CVE-2025-49175", "reference_id": "CVE-2025-49175", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/security/cve/CVE-2025-49175" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10258", "reference_id": "RHSA-2025:10258", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10258" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10342", "reference_id": "RHSA-2025:10342", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10342" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10343", "reference_id": "RHSA-2025:10343", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10343" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10344", "reference_id": "RHSA-2025:10344", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10344" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10346", "reference_id": "RHSA-2025:10346", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10346" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10347", "reference_id": "RHSA-2025:10347", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10347" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10348", "reference_id": "RHSA-2025:10348", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10348" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10349", "reference_id": "RHSA-2025:10349", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10349" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10350", "reference_id": "RHSA-2025:10350", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10350" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10351", "reference_id": "RHSA-2025:10351", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10351" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10352", "reference_id": "RHSA-2025:10352", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10352" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10355", "reference_id": "RHSA-2025:10355", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10355" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10356", "reference_id": "RHSA-2025:10356", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10356" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10360", "reference_id": "RHSA-2025:10360", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10360" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10370", "reference_id": "RHSA-2025:10370", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10370" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10374", "reference_id": "RHSA-2025:10374", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10374" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10375", "reference_id": "RHSA-2025:10375", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10375" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10376", "reference_id": "RHSA-2025:10376", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10376" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10377", "reference_id": "RHSA-2025:10377", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10377" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10378", "reference_id": "RHSA-2025:10378", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10378" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10381", "reference_id": "RHSA-2025:10381", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10381" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:10410", "reference_id": "RHSA-2025:10410", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:10410" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9303", "reference_id": "RHSA-2025:9303", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9303" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9304", "reference_id": "RHSA-2025:9304", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9304" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9305", "reference_id": "RHSA-2025:9305", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9305" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9306", "reference_id": "RHSA-2025:9306", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9306" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9392", "reference_id": "RHSA-2025:9392", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9392" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:9964", "reference_id": "RHSA-2025:9964", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://access.redhat.com/errata/RHSA-2025:9964" }, { "reference_url": "https://www.x.org/wiki/Development/Security/", "reference_id": "Security", "reference_type": "", "scores": [ { "value": "6.1", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H" }, { "value": "Track", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-17T14:53:24Z/" } ], "url": "https://www.x.org/wiki/Development/Security/" }, { "reference_url": "https://usn.ubuntu.com/7573-1/", "reference_id": "USN-7573-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-1/" }, { "reference_url": "https://usn.ubuntu.com/7573-2/", "reference_id": "USN-7573-2", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7573-2/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/509650?format=api", "purl": "pkg:deb/debian/xorg-server@2:21.1.7-3%2Bdeb12u12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-2uvb-wkwb-jbbf" }, { "vulnerability": "VCID-5zrz-y3fm-4uet" }, { "vulnerability": "VCID-62xy-rm39-mqge" }, { "vulnerability": "VCID-abhy-pfqz-efa2" }, { "vulnerability": "VCID-csqc-7j51-x7bb" }, { "vulnerability": "VCID-epmv-hj44-2bhq" }, { "vulnerability": "VCID-nynt-8cpp-27fe" }, { "vulnerability": "VCID-wsp6-uyxx-53hf" }, { "vulnerability": "VCID-zdwz-bgk3-fqdj" }, { "vulnerability": "VCID-zsm3-vywn-pkej" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:21.1.7-3%252Bdeb12u12" } ], "aliases": [ "CVE-2025-49175" ], "risk_score": 2.8, "exploitability": "0.5", "weighted_severity": "5.5", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zb61-sksa-e3c5" } ], "fixing_vulnerabilities": [ { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106684?format=api", "vulnerability_id": "VCID-74jd-1pbz-u7cu", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XFree86 DRI extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12182.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12182.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76655", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.7667", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76691", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.7668", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76685", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509223", "reference_id": "1509223", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509223" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12182" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-74jd-1pbz-u7cu" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106687?format=api", "vulnerability_id": "VCID-939t-kz1h-k7d6", "summary": "xorg-x11-server before 1.19.5 was missing length validation in X-Resource extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12186.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12186.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.735", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.73516", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.73541", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.73529", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0075", "scoring_system": "epss", "scoring_elements": "0.73536", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509216", "reference_id": "1509216", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509216" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12186" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-939t-kz1h-k7d6" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106681?format=api", "vulnerability_id": "VCID-egcx-kc7z-skfq", "summary": "xorg-x11-server before 1.19.5 was vulnerable to integer overflow in (S)ProcXIBarrierReleasePointer functions allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12179.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12179.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75053", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75075", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75071", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509220", "reference_id": "1509220", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509220" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12179" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-egcx-kc7z-skfq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106683?format=api", "vulnerability_id": "VCID-jzxy-vgcy-nbbz", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XFree86 DGA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12181.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12181.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75053", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75075", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75071", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509222", "reference_id": "1509222", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509222" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12181" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-jzxy-vgcy-nbbz" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106682?format=api", "vulnerability_id": "VCID-k29g-v3tn-67bc", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XFree86 VidModeExtension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12180.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12180.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66407", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66425", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66455", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66439", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66447", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509221", "reference_id": "1509221", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509221" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12180" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k29g-v3tn-67bc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106690?format=api", "vulnerability_id": "VCID-k3mg-7ndc-sqe7", "summary": "In X.Org Server (aka xserver and xorg-server) before 1.19.4, an attacker authenticated to an X server with the X shared memory extension enabled can cause aborts of the X server or replace shared memory segments of other X clients in the same session.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13721.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "3.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13721.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23572", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23538", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23655", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23639", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0008", "scoring_system": "epss", "scoring_elements": "0.23592", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.7", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:L/Au:S/C:P/I:P/A:C" }, { "value": "6.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500387", "reference_id": "1500387", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500387" }, { "reference_url": "https://security.archlinux.org/ASA-201710-10", "reference_id": "ASA-201710-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-10" }, { "reference_url": "https://security.archlinux.org/AVG-432", "reference_id": "AVG-432", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-432" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" }, { "reference_url": "https://usn.ubuntu.com/3453-1/", "reference_id": "USN-3453-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3453-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-13721" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-k3mg-7ndc-sqe7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106689?format=api", "vulnerability_id": "VCID-kqe5-6n97-aufv", "summary": "xorg-x11-server before 1.19.5 was missing length validation in RENDER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12187.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12187.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75119", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75131", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75151", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75144", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00843", "scoring_system": "epss", "scoring_elements": "0.75148", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509217", "reference_id": "1509217", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509217" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12187" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-kqe5-6n97-aufv" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6499?format=api", "vulnerability_id": "VCID-ksup-ynuw-3kf7", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10971.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10971.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10971", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86277", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86299", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86285", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86301", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.02753", "scoring_system": "epss", "scoring_elements": "0.86297", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10971" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473204", "reference_id": "1473204", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473204" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492", "reference_id": "867492", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492" }, { "reference_url": "https://security.archlinux.org/ASA-201708-11", "reference_id": "ASA-201708-11", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201708-11" }, { "reference_url": "https://security.archlinux.org/AVG-341", "reference_id": "AVG-341", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-341" }, { "reference_url": "https://usn.ubuntu.com/3362-1/", "reference_id": "USN-3362-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3362-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-10971" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ksup-ynuw-3kf7" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106686?format=api", "vulnerability_id": "VCID-nrev-k192-pfe8", "summary": "xorg-x11-server before 1.19.5 was missing length validation in MIT-SCREEN-SAVER extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12185.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12185.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75053", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75075", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75071", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509215", "reference_id": "1509215", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509215" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12185" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-nrev-k192-pfe8" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106691?format=api", "vulnerability_id": "VCID-py27-f7s4-ybbq", "summary": "In X.Org Server (aka xserver and xorg-server) before 1.19.4, a local attacker authenticated to the X server could overflow a global buffer, causing crashes of the X server or potentially other problems by injecting large or malformed XKB related atoms and accessing them via xkbcomp.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13723.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-13723.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31525", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31488", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31593", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31557", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00127", "scoring_system": "epss", "scoring_elements": "0.31521", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-13723" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.4", "scoring_system": "cvssv2", "scoring_elements": "AV:L/AC:M/Au:S/C:N/I:N/A:C" }, { "value": "4.7", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500388", "reference_id": "1500388", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1500388" }, { "reference_url": "https://security.archlinux.org/ASA-201710-10", "reference_id": "ASA-201710-10", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-10" }, { "reference_url": "https://security.archlinux.org/AVG-432", "reference_id": "AVG-432", "reference_type": "", "scores": [ { "value": "Medium", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-432" }, { "reference_url": "https://security.gentoo.org/glsa/201710-30", "reference_id": "GLSA-201710-30", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201710-30" }, { "reference_url": "https://usn.ubuntu.com/3453-1/", "reference_id": "USN-3453-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3453-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-13723" ], "risk_score": 3.1, "exploitability": "0.5", "weighted_severity": "6.2", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-py27-f7s4-ybbq" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6498?format=api", "vulnerability_id": "VCID-qmf7-231x-cyaa", "summary": "multiple issues", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10972.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-10972.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10972", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.5734", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57393", "published_at": "2026-06-05T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57378", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57402", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00345", "scoring_system": "epss", "scoring_elements": "0.57391", "published_at": "2026-06-07T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-10972" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10971" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10972" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473205", "reference_id": "1473205", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1473205" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492", "reference_id": "867492", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=867492" }, { "reference_url": "https://security.archlinux.org/ASA-201708-11", "reference_id": "ASA-201708-11", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201708-11" }, { "reference_url": "https://security.archlinux.org/AVG-341", "reference_id": "AVG-341", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-341" }, { "reference_url": "https://usn.ubuntu.com/3362-1/", "reference_id": "USN-3362-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3362-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-10972" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-qmf7-231x-cyaa" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/106685?format=api", "vulnerability_id": "VCID-skxw-tvv4-rbdr", "summary": "xorg-x11-server before 1.19.5 was missing length validation in XINERAMA extension allowing malicious X client to cause X server to crash or possibly execute arbitrary code.", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12184.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12184.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75042", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75053", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75075", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75067", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00838", "scoring_system": "epss", "scoring_elements": "0.75071", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509225", "reference_id": "1509225", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509225" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12184" ], "risk_score": 3.4, "exploitability": "0.5", "weighted_severity": "6.8", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-skxw-tvv4-rbdr" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6451?format=api", "vulnerability_id": "VCID-ss7u-mzyq-47cg", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12178.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12178.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66455", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66407", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66439", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66425", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66447", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509219", "reference_id": "1509219", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509219" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12178" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ss7u-mzyq-47cg" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6450?format=api", "vulnerability_id": "VCID-tuku-xgqr-dfdc", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12183.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12183.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66455", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66407", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66439", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66425", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00502", "scoring_system": "epss", "scoring_elements": "0.66447", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509224", "reference_id": "1509224", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509224" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12183" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-tuku-xgqr-dfdc" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6453?format=api", "vulnerability_id": "VCID-umsv-cu6y-r7dy", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12176.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12176.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.76759", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.7672", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.76748", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.76737", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.0095", "scoring_system": "epss", "scoring_elements": "0.76753", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509214", "reference_id": "1509214", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509214" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12176" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-umsv-cu6y-r7dy" }, { "url": "http://public2.vulnerablecode.io/api/vulnerabilities/6452?format=api", "vulnerability_id": "VCID-vdf6-wkbk-37hb", "summary": "arbitrary code execution", "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12177.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-12177.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76691", "published_at": "2026-06-06T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76655", "published_at": "2026-06-04T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.7668", "published_at": "2026-06-07T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.7667", "published_at": "2026-06-08T12:55:00Z" }, { "value": "0.00944", "scoring_system": "epss", "scoring_elements": "0.76685", "published_at": "2026-06-05T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12176" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12177" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12178" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12179" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12180" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12181" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12182" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12183" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12184" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12185" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12186" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12187" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13721" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13723" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "4.6", "scoring_system": "cvssv2", "scoring_elements": "AV:N/AC:H/Au:S/C:P/I:P/A:P" }, { "value": "5.6", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509218", "reference_id": "1509218", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1509218" }, { "reference_url": "https://security.archlinux.org/ASA-201710-29", "reference_id": "ASA-201710-29", "reference_type": "", "scores": [], "url": "https://security.archlinux.org/ASA-201710-29" }, { "reference_url": "https://security.archlinux.org/AVG-443", "reference_id": "AVG-443", "reference_type": "", "scores": [ { "value": "High", "scoring_system": "archlinux", "scoring_elements": "" } ], "url": "https://security.archlinux.org/AVG-443" }, { "reference_url": "https://security.gentoo.org/glsa/201711-05", "reference_id": "GLSA-201711-05", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201711-05" }, { "reference_url": "https://usn.ubuntu.com/3456-1/", "reference_id": "USN-3456-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3456-1/" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/4262?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.16.4-1%2Bdeb8u2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-dnsa-z3ck-53dc" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-j463-aw53-kuc4" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }, { "url": "http://public2.vulnerablecode.io/api/packages/4804?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.19.2-1%2Bdeb9u5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-74jd-1pbz-u7cu" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-939t-kz1h-k7d6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-97f6-pm5e-8qf3" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-egcx-kc7z-skfq" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-jzxy-vgcy-nbbz" }, { "vulnerability": "VCID-k29g-v3tn-67bc" }, { "vulnerability": "VCID-k3mg-7ndc-sqe7" }, { "vulnerability": "VCID-kqe5-6n97-aufv" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-ksup-ynuw-3kf7" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-nrev-k192-pfe8" }, { "vulnerability": "VCID-py27-f7s4-ybbq" }, { "vulnerability": "VCID-qmf7-231x-cyaa" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-skxw-tvv4-rbdr" }, { "vulnerability": "VCID-ss7u-mzyq-47cg" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tuku-xgqr-dfdc" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-umsv-cu6y-r7dy" }, { "vulnerability": "VCID-vdf6-wkbk-37hb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.19.2-1%252Bdeb9u5" }, { "url": "http://public2.vulnerablecode.io/api/packages/5253?format=api", "purl": "pkg:deb/debian/xorg-server@2:1.20.4-1%2Bdeb10u4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-1hen-4651-9fay" }, { "vulnerability": "VCID-1xeu-h1q2-5bfh" }, { "vulnerability": "VCID-2enj-ds99-9fde" }, { "vulnerability": "VCID-44pt-tgfg-k3hh" }, { "vulnerability": "VCID-4q3g-1az1-ybd6" }, { "vulnerability": "VCID-67p9-ddez-7ka1" }, { "vulnerability": "VCID-6bnp-kn76-4qdm" }, { "vulnerability": "VCID-6ezy-q9rx-rfdd" }, { "vulnerability": "VCID-6t55-ed2e-2bcw" }, { "vulnerability": "VCID-713b-xwq2-7ych" }, { "vulnerability": "VCID-828y-hsz4-tqbe" }, { "vulnerability": "VCID-8bbs-eqdc-c7fh" }, { "vulnerability": "VCID-8h6n-ntrj-q7g6" }, { "vulnerability": "VCID-95dx-8w8k-4kfp" }, { "vulnerability": "VCID-96ga-avmd-kubh" }, { "vulnerability": "VCID-9pnm-jep8-3bf9" }, { "vulnerability": "VCID-a2n5-8wwp-87hw" }, { "vulnerability": "VCID-bxtg-a4vf-8fau" }, { "vulnerability": "VCID-czx3-mdx4-hbey" }, { "vulnerability": "VCID-d9am-npf2-jkfm" }, { "vulnerability": "VCID-ej11-bqxf-7qas" }, { "vulnerability": "VCID-f67a-ybc4-x3c2" }, { "vulnerability": "VCID-fm63-7bke-rbe2" }, { "vulnerability": "VCID-fr1v-dcuh-jbhs" }, { "vulnerability": "VCID-g9ce-3gn2-ekbh" }, { "vulnerability": "VCID-gq7x-petb-hfau" }, { "vulnerability": "VCID-hzef-8edc-hyev" }, { "vulnerability": "VCID-jrks-xpht-eycq" }, { "vulnerability": "VCID-ksb1-g8mu-nbhu" }, { "vulnerability": "VCID-mbyt-8urr-yqff" }, { "vulnerability": "VCID-mxq1-dhbf-9ufb" }, { "vulnerability": "VCID-nce7-2t7k-vfdt" }, { "vulnerability": "VCID-nghe-4hvm-juhp" }, { "vulnerability": "VCID-qmrm-2e5f-h3an" }, { "vulnerability": "VCID-r8bp-sg6q-sqgj" }, { "vulnerability": "VCID-rq9m-9qtm-m3bv" }, { "vulnerability": "VCID-rqjp-d3mr-ykdx" }, { "vulnerability": "VCID-sbxv-5gr6-8be3" }, { "vulnerability": "VCID-swtg-qd41-pqgw" }, { "vulnerability": "VCID-t19y-2rhp-23cx" }, { "vulnerability": "VCID-t4ta-czp7-pye5" }, { "vulnerability": "VCID-t6z8-cefj-jqa2" }, { "vulnerability": "VCID-tzs1-bp73-zycb" }, { "vulnerability": "VCID-vs7d-ydc7-w7ec" }, { "vulnerability": "VCID-w48c-6a3x-7qhd" }, { "vulnerability": "VCID-waxn-nrqv-k7ca" }, { "vulnerability": "VCID-wrkb-mwhv-wqcc" }, { "vulnerability": "VCID-wv2b-584d-uyc2" }, { "vulnerability": "VCID-xg2s-qrvs-ybca" }, { "vulnerability": "VCID-xq35-8sqg-9fcf" }, { "vulnerability": "VCID-y5rf-aq67-nbcd" }, { "vulnerability": "VCID-yqg5-wy1b-hfgx" }, { "vulnerability": "VCID-z2sj-4r7t-3ycm" }, { "vulnerability": "VCID-z6tv-7fmc-13bw" }, { "vulnerability": "VCID-zb61-sksa-e3c5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.20.4-1%252Bdeb10u4" } ], "aliases": [ "CVE-2017-12177" ], "risk_score": 4.0, "exploitability": "0.5", "weighted_severity": "8.0", "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-vdf6-wkbk-37hb" } ], "risk_score": "10.0", "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/xorg-server@2:1.16.4-1%252Bdeb8u2" }