Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:rpm/redhat/python3.9@3.9.16-1.el9_2?arch=12

Type rpm

Namespace redhat

Name python3.9

Version 3.9.16-1.el9_2

Qualifiers

arch	12

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-39e1-7qrc-53av

vulnerability_id

VCID-39e1-7qrc-53av

summary

cpython: IMAP command injection in user-controlled commands

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15366.json

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15366.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-15366

reference_id

reference_type

scores

value	0.00081
scoring_system	epss
scoring_elements	0.23923
published_at	2026-04-02T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23763
published_at	2026-04-21T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23964
published_at	2026-04-04T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23752
published_at	2026-04-07T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23823
published_at	2026-04-08T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.2387
published_at	2026-04-09T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23885
published_at	2026-04-11T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23841
published_at	2026-04-12T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23784
published_at	2026-04-18T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23796
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-15366

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15366
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15366

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/143921

reference_id

143921

reference_type

scores

value	5.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:32Z/

url

https://github.com/python/cpython/issues/143921

reference_url

https://github.com/python/cpython/pull/143922

reference_id

143922

reference_type

scores

value	5.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:32Z/

url

https://github.com/python/cpython/pull/143922

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2431368
reference_id	2431368
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2431368

reference_url

https://github.com/python/cpython/commit/6262704b134db2a4ba12e85ecfbd968534f28b45

reference_id

6262704b134db2a4ba12e85ecfbd968534f28b45

reference_type

scores

value	5.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:32Z/

url

https://github.com/python/cpython/commit/6262704b134db2a4ba12e85ecfbd968534f28b45

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/DD7C7JZJYTBXMDOWKCEIEBJLBRU64OMR/

reference_id

DD7C7JZJYTBXMDOWKCEIEBJLBRU64OMR

reference_type

scores

value	5.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:32Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/DD7C7JZJYTBXMDOWKCEIEBJLBRU64OMR/

reference_url	https://access.redhat.com/errata/RHSA-2026:2128
reference_id	RHSA-2026:2128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2128

reference_url	https://access.redhat.com/errata/RHSA-2026:4165
reference_id	RHSA-2026:4165
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4165

reference_url	https://access.redhat.com/errata/RHSA-2026:4168
reference_id	RHSA-2026:4168
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4168

reference_url	https://access.redhat.com/errata/RHSA-2026:4216
reference_id	RHSA-2026:4216
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4216

reference_url	https://access.redhat.com/errata/RHSA-2026:4463
reference_id	RHSA-2026:4463
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4463

reference_url	https://access.redhat.com/errata/RHSA-2026:4473
reference_id	RHSA-2026:4473
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4473

reference_url	https://access.redhat.com/errata/RHSA-2026:4713
reference_id	RHSA-2026:4713
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4713

reference_url	https://access.redhat.com/errata/RHSA-2026:4746
reference_id	RHSA-2026:4746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4746

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://access.redhat.com/errata/RHSA-2026:5152
reference_id	RHSA-2026:5152
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5152

reference_url	https://access.redhat.com/errata/RHSA-2026:5215
reference_id	RHSA-2026:5215
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5215

reference_url	https://access.redhat.com/errata/RHSA-2026:5216
reference_id	RHSA-2026:5216
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5216

reference_url	https://access.redhat.com/errata/RHSA-2026:5218
reference_id	RHSA-2026:5218
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5218

reference_url	https://access.redhat.com/errata/RHSA-2026:5219
reference_id	RHSA-2026:5219
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5219

reference_url	https://access.redhat.com/errata/RHSA-2026:5221
reference_id	RHSA-2026:5221
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5221

reference_url	https://access.redhat.com/errata/RHSA-2026:5223
reference_id	RHSA-2026:5223
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5223

reference_url	https://access.redhat.com/errata/RHSA-2026:5225
reference_id	RHSA-2026:5225
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5225

reference_url	https://access.redhat.com/errata/RHSA-2026:5226
reference_id	RHSA-2026:5226
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5226

reference_url	https://access.redhat.com/errata/RHSA-2026:5315
reference_id	RHSA-2026:5315
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5315

reference_url	https://access.redhat.com/errata/RHSA-2026:5393
reference_id	RHSA-2026:5393
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5393

reference_url	https://access.redhat.com/errata/RHSA-2026:5399
reference_id	RHSA-2026:5399
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5399

reference_url	https://access.redhat.com/errata/RHSA-2026:5606
reference_id	RHSA-2026:5606
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5606

reference_url	https://access.redhat.com/errata/RHSA-2026:6007
reference_id	RHSA-2026:6007
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6007

reference_url	https://access.redhat.com/errata/RHSA-2026:6008
reference_id	RHSA-2026:6008
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6008

reference_url	https://access.redhat.com/errata/RHSA-2026:6253
reference_id	RHSA-2026:6253
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6253

reference_url	https://access.redhat.com/errata/RHSA-2026:6464
reference_id	RHSA-2026:6464
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6464

reference_url	https://access.redhat.com/errata/RHSA-2026:7329
reference_id	RHSA-2026:7329
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7329

reference_url	https://access.redhat.com/errata/RHSA-2026:8746
reference_id	RHSA-2026:8746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8746

reference_url	https://access.redhat.com/errata/RHSA-2026:8747
reference_id	RHSA-2026:8747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8747

reference_url	https://access.redhat.com/errata/RHSA-2026:8748
reference_id	RHSA-2026:8748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8748

reference_url	https://usn.ubuntu.com/8018-1/
reference_id	USN-8018-1
reference_type
scores
url	https://usn.ubuntu.com/8018-1/

reference_url	https://usn.ubuntu.com/8018-2/
reference_id	USN-8018-2
reference_type
scores
url	https://usn.ubuntu.com/8018-2/

fixed_packages

aliases

CVE-2025-15366

risk_score

3.2

exploitability

0.5

weighted_severity

6.4

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-39e1-7qrc-53av

url

VCID-kn9b-2gxw-gqgx

vulnerability_id

VCID-kn9b-2gxw-gqgx

summary

cpython: email header injection due to unquoted newlines

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1299.json

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-1299.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-1299

reference_id

reference_type

scores

value	0.00044
scoring_system	epss
scoring_elements	0.13681
published_at	2026-04-02T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13543
published_at	2026-04-21T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13742
published_at	2026-04-04T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13544
published_at	2026-04-07T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13624
published_at	2026-04-08T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13676
published_at	2026-04-09T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13646
published_at	2026-04-11T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13609
published_at	2026-04-12T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13561
published_at	2026-04-13T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13476
published_at	2026-04-16T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13472
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-1299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-1299

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/commit/052e55e7d44718fe46cbba0ca995cb8fcc359413

reference_id

052e55e7d44718fe46cbba0ca995cb8fcc359413

reference_type

scores

value	6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/

url

https://github.com/python/cpython/commit/052e55e7d44718fe46cbba0ca995cb8fcc359413

reference_url

https://github.com/python/cpython/commit/0a925ab591c45d6638f37b5e57796f36fa0e56d8

reference_id

0a925ab591c45d6638f37b5e57796f36fa0e56d8

reference_type

scores

value	6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/

url

https://github.com/python/cpython/commit/0a925ab591c45d6638f37b5e57796f36fa0e56d8

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126744
reference_id	1126744
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126744

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126745
reference_id	1126745
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126745

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126746
reference_id	1126746
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126746

reference_url

https://github.com/python/cpython/issues/144125

reference_id

144125

reference_type

scores

value	6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/

url

https://github.com/python/cpython/issues/144125

reference_url

https://github.com/python/cpython/pull/144126

reference_id

144126

reference_type

scores

value	6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/

url

https://github.com/python/cpython/pull/144126

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2432437
reference_id	2432437
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2432437

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/6ZZULGALJTITEAGEXLDJE2C6FORDXPBT/

reference_id

6ZZULGALJTITEAGEXLDJE2C6FORDXPBT

reference_type

scores

value	6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/6ZZULGALJTITEAGEXLDJE2C6FORDXPBT/

reference_url

https://github.com/python/cpython/commit/7877fe424415bc4a13045e62a90a7277413d8cb9

reference_id

7877fe424415bc4a13045e62a90a7277413d8cb9

reference_type

scores

value	6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/

url

https://github.com/python/cpython/commit/7877fe424415bc4a13045e62a90a7277413d8cb9

reference_url

https://github.com/python/cpython/commit/842ce19a0c0b58d61591e8f6a708c38db1fb94e4

reference_id

842ce19a0c0b58d61591e8f6a708c38db1fb94e4

reference_type

scores

value	6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/

url

https://github.com/python/cpython/commit/842ce19a0c0b58d61591e8f6a708c38db1fb94e4

reference_url

https://github.com/python/cpython/commit/8cdf6204f4ae821f32993f8fc6bad0d318f95f36

reference_id

8cdf6204f4ae821f32993f8fc6bad0d318f95f36

reference_type

scores

value	6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/

url

https://github.com/python/cpython/commit/8cdf6204f4ae821f32993f8fc6bad0d318f95f36

reference_url

https://cve.org/CVERecord?id=CVE-2024-6923

reference_id

CVERecord?id=CVE-2024-6923

reference_type

scores

value	6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/

url

https://cve.org/CVERecord?id=CVE-2024-6923

reference_url

https://github.com/python/cpython/commit/e417f05ad77a4c30ddc07f99e90fc0cef43e831a

reference_id

e417f05ad77a4c30ddc07f99e90fc0cef43e831a

reference_type

scores

value	6
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-01-23T16:55:59Z/

url

https://github.com/python/cpython/commit/e417f05ad77a4c30ddc07f99e90fc0cef43e831a

reference_url	https://access.redhat.com/errata/RHSA-2026:2128
reference_id	RHSA-2026:2128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2128

reference_url	https://access.redhat.com/errata/RHSA-2026:4165
reference_id	RHSA-2026:4165
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4165

reference_url	https://access.redhat.com/errata/RHSA-2026:4168
reference_id	RHSA-2026:4168
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4168

reference_url	https://access.redhat.com/errata/RHSA-2026:4216
reference_id	RHSA-2026:4216
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4216

reference_url	https://access.redhat.com/errata/RHSA-2026:4463
reference_id	RHSA-2026:4463
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4463

reference_url	https://access.redhat.com/errata/RHSA-2026:4473
reference_id	RHSA-2026:4473
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4473

reference_url	https://access.redhat.com/errata/RHSA-2026:4713
reference_id	RHSA-2026:4713
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4713

reference_url	https://access.redhat.com/errata/RHSA-2026:4746
reference_id	RHSA-2026:4746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4746

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://access.redhat.com/errata/RHSA-2026:5152
reference_id	RHSA-2026:5152
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5152

reference_url	https://access.redhat.com/errata/RHSA-2026:5215
reference_id	RHSA-2026:5215
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5215

reference_url	https://access.redhat.com/errata/RHSA-2026:5216
reference_id	RHSA-2026:5216
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5216

reference_url	https://access.redhat.com/errata/RHSA-2026:5218
reference_id	RHSA-2026:5218
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5218

reference_url	https://access.redhat.com/errata/RHSA-2026:5219
reference_id	RHSA-2026:5219
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5219

reference_url	https://access.redhat.com/errata/RHSA-2026:5221
reference_id	RHSA-2026:5221
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5221

reference_url	https://access.redhat.com/errata/RHSA-2026:5223
reference_id	RHSA-2026:5223
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5223

reference_url	https://access.redhat.com/errata/RHSA-2026:5225
reference_id	RHSA-2026:5225
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5225

reference_url	https://access.redhat.com/errata/RHSA-2026:5226
reference_id	RHSA-2026:5226
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5226

reference_url	https://access.redhat.com/errata/RHSA-2026:5315
reference_id	RHSA-2026:5315
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5315

reference_url	https://access.redhat.com/errata/RHSA-2026:5399
reference_id	RHSA-2026:5399
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5399

reference_url	https://access.redhat.com/errata/RHSA-2026:5606
reference_id	RHSA-2026:5606
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5606

reference_url	https://access.redhat.com/errata/RHSA-2026:6008
reference_id	RHSA-2026:6008
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6008

reference_url	https://access.redhat.com/errata/RHSA-2026:6253
reference_id	RHSA-2026:6253
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6253

reference_url	https://access.redhat.com/errata/RHSA-2026:6464
reference_id	RHSA-2026:6464
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6464

reference_url	https://access.redhat.com/errata/RHSA-2026:7329
reference_id	RHSA-2026:7329
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7329

reference_url	https://access.redhat.com/errata/RHSA-2026:7443
reference_id	RHSA-2026:7443
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7443

reference_url	https://access.redhat.com/errata/RHSA-2026:7661
reference_id	RHSA-2026:7661
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7661

reference_url	https://access.redhat.com/errata/RHSA-2026:8746
reference_id	RHSA-2026:8746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8746

reference_url	https://access.redhat.com/errata/RHSA-2026:8747
reference_id	RHSA-2026:8747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8747

reference_url	https://access.redhat.com/errata/RHSA-2026:8748
reference_id	RHSA-2026:8748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8748

reference_url	https://access.redhat.com/errata/RHSA-2026:8822
reference_id	RHSA-2026:8822
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8822

reference_url	https://access.redhat.com/errata/RHSA-2026:8824
reference_id	RHSA-2026:8824
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8824

fixed_packages

aliases

CVE-2026-1299

risk_score

3.2

exploitability

0.5

weighted_severity

6.4

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-kn9b-2gxw-gqgx

url

VCID-uf5s-kms5-g7a9

vulnerability_id

VCID-uf5s-kms5-g7a9

summary

cpython: POP3 command injection in user-controlled commands

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15367.json

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-15367.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-15367

reference_id

reference_type

scores

value	0.00081
scoring_system	epss
scoring_elements	0.23923
published_at	2026-04-02T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23763
published_at	2026-04-21T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23964
published_at	2026-04-04T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23752
published_at	2026-04-07T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23823
published_at	2026-04-08T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.2387
published_at	2026-04-09T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23885
published_at	2026-04-11T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23841
published_at	2026-04-12T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23784
published_at	2026-04-18T12:55:00Z

value	0.00081
scoring_system	epss
scoring_elements	0.23796
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-15367

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15367
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-15367

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/143923

reference_id

143923

reference_type

scores

value	5.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:33Z/

url

https://github.com/python/cpython/issues/143923

reference_url

https://github.com/python/cpython/pull/143924

reference_id

143924

reference_type

scores

value	5.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:33Z/

url

https://github.com/python/cpython/pull/143924

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2431373
reference_id	2431373
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2431373

reference_url

https://github.com/python/cpython/commit/b234a2b67539f787e191d2ef19a7cbdce32874e7

reference_id

b234a2b67539f787e191d2ef19a7cbdce32874e7

reference_type

scores

value	5.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:33Z/

url

https://github.com/python/cpython/commit/b234a2b67539f787e191d2ef19a7cbdce32874e7

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/CBFBOWVGGUJFSGITQCCBZS4GEYYZ7ZNE/

reference_id

CBFBOWVGGUJFSGITQCCBZS4GEYYZ7ZNE

reference_type

scores

value	5.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-01-22T04:55:33Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/CBFBOWVGGUJFSGITQCCBZS4GEYYZ7ZNE/

reference_url	https://access.redhat.com/errata/RHSA-2026:2128
reference_id	RHSA-2026:2128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2128

reference_url	https://access.redhat.com/errata/RHSA-2026:4165
reference_id	RHSA-2026:4165
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4165

reference_url	https://access.redhat.com/errata/RHSA-2026:4168
reference_id	RHSA-2026:4168
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4168

reference_url	https://access.redhat.com/errata/RHSA-2026:4216
reference_id	RHSA-2026:4216
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4216

reference_url	https://access.redhat.com/errata/RHSA-2026:4463
reference_id	RHSA-2026:4463
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4463

reference_url	https://access.redhat.com/errata/RHSA-2026:4473
reference_id	RHSA-2026:4473
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4473

reference_url	https://access.redhat.com/errata/RHSA-2026:4713
reference_id	RHSA-2026:4713
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4713

reference_url	https://access.redhat.com/errata/RHSA-2026:4746
reference_id	RHSA-2026:4746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4746

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://access.redhat.com/errata/RHSA-2026:5152
reference_id	RHSA-2026:5152
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5152

reference_url	https://access.redhat.com/errata/RHSA-2026:5215
reference_id	RHSA-2026:5215
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5215

reference_url	https://access.redhat.com/errata/RHSA-2026:5216
reference_id	RHSA-2026:5216
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5216

reference_url	https://access.redhat.com/errata/RHSA-2026:5218
reference_id	RHSA-2026:5218
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5218

reference_url	https://access.redhat.com/errata/RHSA-2026:5219
reference_id	RHSA-2026:5219
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5219

reference_url	https://access.redhat.com/errata/RHSA-2026:5221
reference_id	RHSA-2026:5221
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5221

reference_url	https://access.redhat.com/errata/RHSA-2026:5223
reference_id	RHSA-2026:5223
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5223

reference_url	https://access.redhat.com/errata/RHSA-2026:5225
reference_id	RHSA-2026:5225
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5225

reference_url	https://access.redhat.com/errata/RHSA-2026:5226
reference_id	RHSA-2026:5226
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5226

reference_url	https://access.redhat.com/errata/RHSA-2026:5315
reference_id	RHSA-2026:5315
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5315

reference_url	https://access.redhat.com/errata/RHSA-2026:5393
reference_id	RHSA-2026:5393
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5393

reference_url	https://access.redhat.com/errata/RHSA-2026:5399
reference_id	RHSA-2026:5399
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5399

reference_url	https://access.redhat.com/errata/RHSA-2026:5606
reference_id	RHSA-2026:5606
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5606

reference_url	https://access.redhat.com/errata/RHSA-2026:5994
reference_id	RHSA-2026:5994
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5994

reference_url	https://access.redhat.com/errata/RHSA-2026:6007
reference_id	RHSA-2026:6007
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6007

reference_url	https://access.redhat.com/errata/RHSA-2026:6008
reference_id	RHSA-2026:6008
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6008

reference_url	https://access.redhat.com/errata/RHSA-2026:6253
reference_id	RHSA-2026:6253
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6253

reference_url	https://access.redhat.com/errata/RHSA-2026:6464
reference_id	RHSA-2026:6464
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:6464

reference_url	https://access.redhat.com/errata/RHSA-2026:7329
reference_id	RHSA-2026:7329
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7329

reference_url	https://access.redhat.com/errata/RHSA-2026:8746
reference_id	RHSA-2026:8746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8746

reference_url	https://access.redhat.com/errata/RHSA-2026:8747
reference_id	RHSA-2026:8747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8747

reference_url	https://access.redhat.com/errata/RHSA-2026:8748
reference_id	RHSA-2026:8748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8748

reference_url	https://usn.ubuntu.com/8018-1/
reference_id	USN-8018-1
reference_type
scores
url	https://usn.ubuntu.com/8018-1/

reference_url	https://usn.ubuntu.com/8018-2/
reference_id	USN-8018-2
reference_type
scores
url	https://usn.ubuntu.com/8018-2/

fixed_packages

aliases

CVE-2025-15367

risk_score

3.2

exploitability

0.5

weighted_severity

6.4

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-uf5s-kms5-g7a9

Fixing_vulnerabilities

Risk_score 3.2

Resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python3.9@3.9.16-1.el9_2%3Farch=12

Package Instance