Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm

Type deb

Namespace debian

Name python3.11

Version 3.11.2-6+deb12u6

Qualifiers

distro	bookworm

Subpath

Is_vulnerable false

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1hw3-vhwb-nkcd

vulnerability_id VCID-1hw3-vhwb-nkcd

summary Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-12718.json

reference_id

reference_type

scores

value	7.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-12718.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-12718

reference_id

reference_type

scores

value	0.00692
scoring_system	epss
scoring_elements	0.71854
published_at	2026-04-21T12:55:00Z

value	0.00692
scoring_system	epss
scoring_elements	0.71793
published_at	2026-04-02T12:55:00Z

value	0.00692
scoring_system	epss
scoring_elements	0.71811
published_at	2026-04-04T12:55:00Z

value	0.00692
scoring_system	epss
scoring_elements	0.71785
published_at	2026-04-07T12:55:00Z

value	0.00692
scoring_system	epss
scoring_elements	0.71824
published_at	2026-04-08T12:55:00Z

value	0.00692
scoring_system	epss
scoring_elements	0.71835
published_at	2026-04-09T12:55:00Z

value	0.00692
scoring_system	epss
scoring_elements	0.71859
published_at	2026-04-11T12:55:00Z

value	0.00692
scoring_system	epss
scoring_elements	0.71842
published_at	2026-04-12T12:55:00Z

value	0.00692
scoring_system	epss
scoring_elements	0.71825
published_at	2026-04-13T12:55:00Z

value	0.00692
scoring_system	epss
scoring_elements	0.71867
published_at	2026-04-16T12:55:00Z

value	0.00692
scoring_system	epss
scoring_elements	0.71871
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-12718

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/127987

reference_id

127987

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://github.com/python/cpython/issues/127987

reference_url

https://github.com/python/cpython/issues/135034

reference_id

135034

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://github.com/python/cpython/issues/135034

reference_url

https://github.com/python/cpython/pull/135037

reference_id

135037

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://github.com/python/cpython/pull/135037

reference_url

https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da

reference_id

19de092debb3d7e832e5672cc2f7b788d35951da

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2370013
reference_id	2370013
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2370013

reference_url

https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9

reference_id

28463dba112af719df1e8b0391c46787ad756dd9

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9

reference_url

https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a

reference_id

3612d8f51741b11f36f8fb0494d79086bac9390a

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a

reference_url

https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_id

4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_url

https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f

reference_id

52398e33eff261329a0180ac1d54f42f

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f

reference_url

https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a

reference_id

9c1110ef6652687d7c55f590f909720eddde965a

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a

reference_url

https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_id

9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_url

https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_id

aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_url

https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_id

dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_url	https://security.gentoo.org/glsa/202506-07
reference_id	GLSA-202506-07
reference_type
scores
url	https://security.gentoo.org/glsa/202506-07

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/

reference_id

MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-07-24T15:57:41Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/

reference_url	https://access.redhat.com/errata/RHSA-2025:10026
reference_id	RHSA-2025:10026
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10026

reference_url	https://access.redhat.com/errata/RHSA-2025:10028
reference_id	RHSA-2025:10028
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10028

reference_url	https://access.redhat.com/errata/RHSA-2025:10031
reference_id	RHSA-2025:10031
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10031

reference_url	https://access.redhat.com/errata/RHSA-2025:10128
reference_id	RHSA-2025:10128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10128

reference_url	https://access.redhat.com/errata/RHSA-2025:10136
reference_id	RHSA-2025:10136
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10136

reference_url	https://access.redhat.com/errata/RHSA-2025:10140
reference_id	RHSA-2025:10140
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10140

reference_url	https://access.redhat.com/errata/RHSA-2025:10148
reference_id	RHSA-2025:10148
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10148

reference_url	https://access.redhat.com/errata/RHSA-2025:10189
reference_id	RHSA-2025:10189
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10189

reference_url	https://access.redhat.com/errata/RHSA-2025:10399
reference_id	RHSA-2025:10399
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10399

reference_url	https://access.redhat.com/errata/RHSA-2025:10484
reference_id	RHSA-2025:10484
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10484

reference_url	https://access.redhat.com/errata/RHSA-2025:10602
reference_id	RHSA-2025:10602
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10602

reference_url	https://access.redhat.com/errata/RHSA-2025:11386
reference_id	RHSA-2025:11386
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11386

reference_url	https://access.redhat.com/errata/RHSA-2025:13267
reference_id	RHSA-2025:13267
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13267

reference_url	https://access.redhat.com/errata/RHSA-2025:18219
reference_id	RHSA-2025:18219
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:18219

reference_url	https://access.redhat.com/errata/RHSA-2025:9918
reference_id	RHSA-2025:9918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9918

reference_url	https://access.redhat.com/errata/RHSA-2026:0934
reference_id	RHSA-2026:0934
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0934

reference_url	https://usn.ubuntu.com/7583-1/
reference_id	USN-7583-1
reference_type
scores
url	https://usn.ubuntu.com/7583-1/

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-12718

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1hw3-vhwb-nkcd

url VCID-2shb-2cvn-dyd2

vulnerability_id VCID-2shb-2cvn-dyd2

summary Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24329.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-24329.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-24329

reference_id

reference_type

scores

value	0.01081
scoring_system	epss
scoring_elements	0.77879
published_at	2026-04-21T12:55:00Z

value	0.01445
scoring_system	epss
scoring_elements	0.8075
published_at	2026-04-12T12:55:00Z

value	0.01445
scoring_system	epss
scoring_elements	0.8078
published_at	2026-04-18T12:55:00Z

value	0.01445
scoring_system	epss
scoring_elements	0.80778
published_at	2026-04-16T12:55:00Z

value	0.01445
scoring_system	epss
scoring_elements	0.80742
published_at	2026-04-13T12:55:00Z

value	0.0159
scoring_system	epss
scoring_elements	0.81602
published_at	2026-04-04T12:55:00Z

value	0.0159
scoring_system	epss
scoring_elements	0.81627
published_at	2026-04-08T12:55:00Z

value	0.0159
scoring_system	epss
scoring_elements	0.816
published_at	2026-04-07T12:55:00Z

value	0.0159
scoring_system	epss
scoring_elements	0.81581
published_at	2026-04-02T12:55:00Z

value	0.0159
scoring_system	epss
scoring_elements	0.81653
published_at	2026-04-11T12:55:00Z

value	0.0159
scoring_system	epss
scoring_elements	0.81633
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-24329

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24329
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24329

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/102153

reference_id

102153

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://github.com/python/cpython/issues/102153

reference_url

https://www.kb.cert.org/vuls/id/127587

reference_id

127587

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://www.kb.cert.org/vuls/id/127587

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2173917
reference_id	2173917
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2173917

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6PEVICI7YNGGMSL3UCMWGE66QFLATH72/

reference_id

6PEVICI7YNGGMSL3UCMWGE66QFLATH72

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6PEVICI7YNGGMSL3UCMWGE66QFLATH72/

reference_url

https://github.com/python/cpython/pull/99421

reference_id

99421

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://github.com/python/cpython/pull/99421

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO/

reference_id

DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DSL6NSOAXWBJJ67XPLSSC74MNKZF3BBO/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G/

reference_id

EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EM2XLZSTXG44TMFXF4E6VTGKR2MQCW3G/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG/

reference_id

F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F2NY75GFDZ5T6YPN44D3VMFT5SUVTOTG/

reference_url	https://security.gentoo.org/glsa/202405-01
reference_id	GLSA-202405-01
reference_type
scores
url	https://security.gentoo.org/glsa/202405-01

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN/

reference_id

GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GR5US3BYILYJ4SKBV6YBNPRUBAL5P2CN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7/

reference_id

H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/H23OSKC6UG6IWOQAUPW74YUHWRWVXJP7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA/

reference_id

JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JZTLGV2HYFF4AMYJL25VDIGAIHCU7UPA/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T/

reference_id

LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LWC4WGXER5P6Q75RFGL7QUTPP3N5JR7T/

reference_url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_id

msg00022.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP/

reference_id

MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MZEHSXSCMA4WWQKXT6QV7AAR6SWNZ2VP/

reference_url

https://security.netapp.com/advisory/ntap-20230324-0004/

reference_id

ntap-20230324-0004

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://security.netapp.com/advisory/ntap-20230324-0004/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR/

reference_id

O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O5SP4RT3RRS434ZS2HQKQJ3VZW7YPKYR/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR/

reference_id

OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OHHJHJRLEF3TDT2K3676CAUVRDD4CCMR/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI/

reference_id

PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PEUN6T22UJFXR7J5F6UUHCXXPKJ2DVHI/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44/

reference_id

PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PURM5CFDABEWAIWZFD2MQ7ZJGCPYSQ44/

reference_url

https://pointernull.com/security/python-url-parse-problem.html

reference_id

python-url-parse-problem.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://pointernull.com/security/python-url-parse-problem.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL/

reference_id

Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Q3J5N24ECS4B6MJDRO6UAYU6GPLYBDCL/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4/

reference_id

QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QRQHN7RWJQJHYP6E5EKESOYP5VDSHZG4/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RA2MBEEES6L46OD64OBSVUUMGKNGMOWW/

reference_id

RA2MBEEES6L46OD64OBSVUUMGKNGMOWW

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RA2MBEEES6L46OD64OBSVUUMGKNGMOWW/

reference_url	https://access.redhat.com/errata/RHSA-2023:3550
reference_id	RHSA-2023:3550
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3550

reference_url	https://access.redhat.com/errata/RHSA-2023:3555
reference_id	RHSA-2023:3555
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3555

reference_url	https://access.redhat.com/errata/RHSA-2023:3556
reference_id	RHSA-2023:3556
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3556

reference_url	https://access.redhat.com/errata/RHSA-2023:3585
reference_id	RHSA-2023:3585
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3585

reference_url	https://access.redhat.com/errata/RHSA-2023:3591
reference_id	RHSA-2023:3591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3591

reference_url	https://access.redhat.com/errata/RHSA-2023:3594
reference_id	RHSA-2023:3594
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3594

reference_url	https://access.redhat.com/errata/RHSA-2023:3595
reference_id	RHSA-2023:3595
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3595

reference_url	https://access.redhat.com/errata/RHSA-2023:3776
reference_id	RHSA-2023:3776
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3776

reference_url	https://access.redhat.com/errata/RHSA-2023:3777
reference_id	RHSA-2023:3777
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3777

reference_url	https://access.redhat.com/errata/RHSA-2023:3780
reference_id	RHSA-2023:3780
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3780

reference_url	https://access.redhat.com/errata/RHSA-2023:3781
reference_id	RHSA-2023:3781
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3781

reference_url	https://access.redhat.com/errata/RHSA-2023:3796
reference_id	RHSA-2023:3796
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3796

reference_url	https://access.redhat.com/errata/RHSA-2023:3810
reference_id	RHSA-2023:3810
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3810

reference_url	https://access.redhat.com/errata/RHSA-2023:3811
reference_id	RHSA-2023:3811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3811

reference_url	https://access.redhat.com/errata/RHSA-2023:3931
reference_id	RHSA-2023:3931
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3931

reference_url	https://access.redhat.com/errata/RHSA-2023:3932
reference_id	RHSA-2023:3932
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3932

reference_url	https://access.redhat.com/errata/RHSA-2023:3934
reference_id	RHSA-2023:3934
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3934

reference_url	https://access.redhat.com/errata/RHSA-2023:3935
reference_id	RHSA-2023:3935
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3935

reference_url	https://access.redhat.com/errata/RHSA-2023:3936
reference_id	RHSA-2023:3936
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:3936

reference_url	https://access.redhat.com/errata/RHSA-2023:4004
reference_id	RHSA-2023:4004
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4004

reference_url	https://access.redhat.com/errata/RHSA-2023:4008
reference_id	RHSA-2023:4008
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4008

reference_url	https://access.redhat.com/errata/RHSA-2023:4032
reference_id	RHSA-2023:4032
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4032

reference_url	https://access.redhat.com/errata/RHSA-2023:4038
reference_id	RHSA-2023:4038
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4038

reference_url	https://access.redhat.com/errata/RHSA-2023:4203
reference_id	RHSA-2023:4203
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4203

reference_url	https://access.redhat.com/errata/RHSA-2023:4282
reference_id	RHSA-2023:4282
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4282

reference_url	https://access.redhat.com/errata/RHSA-2023:6793
reference_id	RHSA-2023:6793
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6793

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ/

reference_id

T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4IDB5OAR5Y4UK3HLMZBW4WEL2B7YFMJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG/

reference_id

TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZH26JGNZ5XYPZ5SAU3NKSBSPRE5OHTG/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP/

reference_id

U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U2MZOJYGFCB5PPT6AKMAU72N7QOYWLBP/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC/

reference_id

UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UONZWLB4QVLQIY5CPDLEUEKH6WX4VQMC/

reference_url	https://usn.ubuntu.com/5888-1/
reference_id	USN-5888-1
reference_type
scores
url	https://usn.ubuntu.com/5888-1/

reference_url	https://usn.ubuntu.com/5960-1/
reference_id	USN-5960-1
reference_type
scores
url	https://usn.ubuntu.com/5960-1/

reference_url	https://usn.ubuntu.com/6139-1/
reference_id	USN-6139-1
reference_type
scores
url	https://usn.ubuntu.com/6139-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/7180-1/
reference_id	USN-7180-1
reference_type
scores
url	https://usn.ubuntu.com/7180-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU/

reference_id

WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T16:25:24Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WTOAUJNDWZDRWVSXJ354AYZYKRMT56HU/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u2?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u2?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u2%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2023-24329

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2shb-2cvn-dyd2

url VCID-2v5u-2z4w-ffgx

vulnerability_id VCID-2v5u-2z4w-ffgx

summary python: incorrect IPv4 and IPv6 private ranges

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4032.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-4032.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-4032

reference_id

reference_type

scores

value	0.01127
scoring_system	epss
scoring_elements	0.78316
published_at	2026-04-21T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78243
published_at	2026-04-02T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78274
published_at	2026-04-04T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78256
published_at	2026-04-07T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78282
published_at	2026-04-08T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78288
published_at	2026-04-09T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78314
published_at	2026-04-11T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78297
published_at	2026-04-12T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78292
published_at	2026-04-13T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.78322
published_at	2026-04-16T12:55:00Z

value	0.01127
scoring_system	epss
scoring_elements	0.7832
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-4032

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4032
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-4032

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/113171

reference_id

113171

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

https://github.com/python/cpython/issues/113171

reference_url

https://github.com/python/cpython/pull/113179

reference_id

113179

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

https://github.com/python/cpython/pull/113179

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2292921
reference_id	2292921
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2292921

reference_url

https://github.com/python/cpython/commit/22adf29da8d99933ffed8647d3e0726edd16f7f8

reference_id

22adf29da8d99933ffed8647d3e0726edd16f7f8

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

https://github.com/python/cpython/commit/22adf29da8d99933ffed8647d3e0726edd16f7f8

reference_url

http://www.openwall.com/lists/oss-security/2024/06/17/3

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

http://www.openwall.com/lists/oss-security/2024/06/17/3

reference_url

https://github.com/python/cpython/commit/40d75c2b7f5c67e254d0a025e0f2e2c7ada7f69f

reference_id

40d75c2b7f5c67e254d0a025e0f2e2c7ada7f69f

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

https://github.com/python/cpython/commit/40d75c2b7f5c67e254d0a025e0f2e2c7ada7f69f

reference_url

https://github.com/python/cpython/commit/895f7e2ac23eff4743143beef0f0c5ac71ea27d3

reference_id

895f7e2ac23eff4743143beef0f0c5ac71ea27d3

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

https://github.com/python/cpython/commit/895f7e2ac23eff4743143beef0f0c5ac71ea27d3

reference_url

https://github.com/python/cpython/commit/ba431579efdcbaed7a96f2ac4ea0775879a332fb

reference_id

ba431579efdcbaed7a96f2ac4ea0775879a332fb

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

https://github.com/python/cpython/commit/ba431579efdcbaed7a96f2ac4ea0775879a332fb

reference_url

https://github.com/python/cpython/commit/c62c9e518b784fe44432a3f4fc265fb95b651906

reference_id

c62c9e518b784fe44432a3f4fc265fb95b651906

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

https://github.com/python/cpython/commit/c62c9e518b784fe44432a3f4fc265fb95b651906

reference_url

https://github.com/python/cpython/commit/f86b17ac511e68192ba71f27e752321a3252cee3

reference_id

f86b17ac511e68192ba71f27e752321a3252cee3

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

https://github.com/python/cpython/commit/f86b17ac511e68192ba71f27e752321a3252cee3

reference_url

https://www.iana.org/assignments/iana-ipv4-special-registry/iana-ipv4-special-registry.xhtml

reference_id

iana-ipv4-special-registry.xhtml

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

https://www.iana.org/assignments/iana-ipv4-special-registry/iana-ipv4-special-registry.xhtml

reference_url

https://www.iana.org/assignments/iana-ipv6-special-registry/iana-ipv6-special-registry.xhtml

reference_id

iana-ipv6-special-registry.xhtml

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

https://www.iana.org/assignments/iana-ipv6-special-registry/iana-ipv6-special-registry.xhtml

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/NRUHDUS2IV2USIZM2CVMSFL6SCKU3RZA/

reference_id

NRUHDUS2IV2USIZM2CVMSFL6SCKU3RZA

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/NRUHDUS2IV2USIZM2CVMSFL6SCKU3RZA/

reference_url

https://security.netapp.com/advisory/ntap-20240726-0004/

reference_id

ntap-20240726-0004

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-08T18:21:11Z/

url

https://security.netapp.com/advisory/ntap-20240726-0004/

reference_url	https://access.redhat.com/errata/RHSA-2024:4766
reference_id	RHSA-2024:4766
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4766

reference_url	https://access.redhat.com/errata/RHSA-2024:4779
reference_id	RHSA-2024:4779
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4779

reference_url	https://access.redhat.com/errata/RHSA-2024:5962
reference_id	RHSA-2024:5962
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:5962

reference_url	https://access.redhat.com/errata/RHSA-2024:6030
reference_id	RHSA-2024:6030
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6030

reference_url	https://access.redhat.com/errata/RHSA-2024:6961
reference_id	RHSA-2024:6961
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6961

reference_url	https://access.redhat.com/errata/RHSA-2024:6962
reference_id	RHSA-2024:6962
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6962

reference_url	https://access.redhat.com/errata/RHSA-2024:6975
reference_id	RHSA-2024:6975
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6975

reference_url	https://access.redhat.com/errata/RHSA-2024:7417
reference_id	RHSA-2024:7417
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7417

reference_url	https://access.redhat.com/errata/RHSA-2024:9190
reference_id	RHSA-2024:9190
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9190

reference_url	https://usn.ubuntu.com/6928-1/
reference_id	USN-6928-1
reference_type
scores
url	https://usn.ubuntu.com/6928-1/

reference_url	https://usn.ubuntu.com/6941-1/
reference_id	USN-6941-1
reference_type
scores
url	https://usn.ubuntu.com/6941-1/

reference_url	https://usn.ubuntu.com/7348-1/
reference_id	USN-7348-1
reference_type
scores
url	https://usn.ubuntu.com/7348-1/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u3?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u3?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u3%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-4032

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-2v5u-2z4w-ffgx

url VCID-4afh-28ss-mudf

vulnerability_id VCID-4afh-28ss-mudf

summary Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4138.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4138.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-4138

reference_id

reference_type

scores

value	0.00273
scoring_system	epss
scoring_elements	0.50673
published_at	2026-04-02T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50736
published_at	2026-04-21T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50699
published_at	2026-04-04T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50655
published_at	2026-04-07T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.5071
published_at	2026-04-13T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50706
published_at	2026-04-09T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50748
published_at	2026-04-11T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50725
published_at	2026-04-12T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.5075
published_at	2026-04-16T12:55:00Z

value	0.00273
scoring_system	epss
scoring_elements	0.50756
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-4138

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/135034

reference_id

135034

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/

url

https://github.com/python/cpython/issues/135034

reference_url

https://github.com/python/cpython/pull/135037

reference_id

135037

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/

url

https://github.com/python/cpython/pull/135037

reference_url

https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da

reference_id

19de092debb3d7e832e5672cc2f7b788d35951da

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/

url

https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2372426
reference_id	2372426
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2372426

reference_url

https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9

reference_id

28463dba112af719df1e8b0391c46787ad756dd9

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/

url

https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9

reference_url

https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a

reference_id

3612d8f51741b11f36f8fb0494d79086bac9390a

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/

url

https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a

reference_url

https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_id

4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/

url

https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_url

https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f

reference_id

52398e33eff261329a0180ac1d54f42f

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/

url

https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f

reference_url

https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a

reference_id

9c1110ef6652687d7c55f590f909720eddde965a

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/

url

https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a

reference_url

https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_id

9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/

url

https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_url

https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_id

aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/

url

https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_url

https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_id

dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/

url

https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_url	https://security.gentoo.org/glsa/202506-07
reference_id	GLSA-202506-07
reference_type
scores
url	https://security.gentoo.org/glsa/202506-07

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/

reference_id

MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:29:22Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/

reference_url	https://access.redhat.com/errata/RHSA-2025:10026
reference_id	RHSA-2025:10026
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10026

reference_url	https://access.redhat.com/errata/RHSA-2025:10028
reference_id	RHSA-2025:10028
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10028

reference_url	https://access.redhat.com/errata/RHSA-2025:10031
reference_id	RHSA-2025:10031
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10031

reference_url	https://access.redhat.com/errata/RHSA-2025:10128
reference_id	RHSA-2025:10128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10128

reference_url	https://access.redhat.com/errata/RHSA-2025:10136
reference_id	RHSA-2025:10136
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10136

reference_url	https://access.redhat.com/errata/RHSA-2025:10140
reference_id	RHSA-2025:10140
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10140

reference_url	https://access.redhat.com/errata/RHSA-2025:10148
reference_id	RHSA-2025:10148
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10148

reference_url	https://access.redhat.com/errata/RHSA-2025:10189
reference_id	RHSA-2025:10189
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10189

reference_url	https://access.redhat.com/errata/RHSA-2025:10399
reference_id	RHSA-2025:10399
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10399

reference_url	https://access.redhat.com/errata/RHSA-2025:10484
reference_id	RHSA-2025:10484
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10484

reference_url	https://access.redhat.com/errata/RHSA-2025:10602
reference_id	RHSA-2025:10602
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10602

reference_url	https://access.redhat.com/errata/RHSA-2025:11386
reference_id	RHSA-2025:11386
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11386

reference_url	https://access.redhat.com/errata/RHSA-2025:13267
reference_id	RHSA-2025:13267
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13267

reference_url	https://access.redhat.com/errata/RHSA-2025:18219
reference_id	RHSA-2025:18219
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:18219

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url	https://access.redhat.com/errata/RHSA-2025:9918
reference_id	RHSA-2025:9918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9918

reference_url	https://access.redhat.com/errata/RHSA-2026:0934
reference_id	RHSA-2026:0934
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0934

reference_url	https://usn.ubuntu.com/7583-1/
reference_id	USN-7583-1
reference_type
scores
url	https://usn.ubuntu.com/7583-1/

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2025-4138

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4afh-28ss-mudf

url VCID-4gsg-5e6s-63g4

vulnerability_id VCID-4gsg-5e6s-63g4

summary Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-28861.json

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-28861.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-28861

reference_id

reference_type

scores

value	0.01395
scoring_system	epss
scoring_elements	0.80333
published_at	2026-04-01T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.8034
published_at	2026-04-02T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.8036
published_at	2026-04-04T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80392
published_at	2026-04-12T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80407
published_at	2026-04-11T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80388
published_at	2026-04-09T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80378
published_at	2026-04-08T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80349
published_at	2026-04-07T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80419
published_at	2026-04-21T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80415
published_at	2026-04-18T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80414
published_at	2026-04-16T12:55:00Z

value	0.01395
scoring_system	epss
scoring_elements	0.80385
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-28861

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-28861

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2120642
reference_id	2120642
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2120642

reference_url

https://github.com/python/cpython/pull/24848

reference_id

24848

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://github.com/python/cpython/pull/24848

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/

reference_id

2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2TRINJE3INWDVIHIABW4L2NP3RUSK7BJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/

reference_id

5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5LTSPFIULY2GZJN3QYNFVM4JSU6H4D6J/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/

reference_id

5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5OABQ5CMPQETJLFHROAXDIDXCMDTNVYG/

reference_url

https://github.com/python/cpython/pull/93879

reference_id

93879

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://github.com/python/cpython/pull/93879

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/

reference_id

DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DISZAFSIQ7IAPAEQTC7G2Z5QUA2V2PSW/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/

reference_id

HPX4XHT2FGVQYLY2STT2MRVENILNZTTU

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HPX4XHT2FGVQYLY2STT2MRVENILNZTTU/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/

reference_id

I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I3MQT5ZE3QH5PVDJMERTBOCILHK35CBE/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/

reference_id

IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IFGV7P2PYFBMK32OKHCAC2ZPJQV5AUDF/

reference_url

https://bugs.python.org/issue43223

reference_id

issue43223

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://bugs.python.org/issue43223

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/

reference_id

KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KRGKPYA5YHIXQAMRIXO5DSCX7D4UUW4Q/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/

reference_id

OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OKYE2DOI2X7WZXAWTQJZAXYIWM37HDCY/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/

reference_id

QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLE5INSVJUZJGY5OJXV6JREXWD7UDHYN/

reference_url	https://access.redhat.com/errata/RHSA-2022:6766
reference_id	RHSA-2022:6766
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6766

reference_url	https://access.redhat.com/errata/RHSA-2022:8353
reference_id	RHSA-2022:8353
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8353

reference_url	https://access.redhat.com/errata/RHSA-2023:0833
reference_id	RHSA-2023:0833
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0833

reference_url	https://access.redhat.com/errata/RHSA-2023:2763
reference_id	RHSA-2023:2763
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2763

reference_url	https://access.redhat.com/errata/RHSA-2023:2764
reference_id	RHSA-2023:2764
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2764

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/

reference_id

S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/S7G66SRWUM36ENQ3X6LAIG7HAB27D4XJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/

reference_id

TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TZEPOPUFC42KXXSLFPZ47ZZRGPOR7SQE/

reference_url	https://usn.ubuntu.com/5629-1/
reference_id	USN-5629-1
reference_type
scores
url	https://usn.ubuntu.com/5629-1/

reference_url	https://usn.ubuntu.com/5888-1/
reference_id	USN-5888-1
reference_type
scores
url	https://usn.ubuntu.com/5888-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/

reference_id

WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WXF6MQ74HVIDDSR5AE2UDR24I6D4FEPC/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/

reference_id

X46T4EFTIBXZRYTGASBDEZGYJINH2OWV

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-17T01:59:19Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X46T4EFTIBXZRYTGASBDEZGYJINH2OWV/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.0~b4-1?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.0~b4-1?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.0~b4-1%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2021-28861

risk_score 3.4

exploitability 0.5

weighted_severity 6.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4gsg-5e6s-63g4

url VCID-4z89-3tfk-pyge

vulnerability_id VCID-4z89-3tfk-pyge

summary Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40217.json

reference_id

reference_type

scores

value	8.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-40217.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-40217

reference_id

reference_type

scores

value	0.00581
scoring_system	epss
scoring_elements	0.6894
published_at	2026-04-21T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68929
published_at	2026-04-09T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68952
published_at	2026-04-11T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68938
published_at	2026-04-12T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.68909
published_at	2026-04-13T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.6895
published_at	2026-04-16T12:55:00Z

value	0.00581
scoring_system	epss
scoring_elements	0.6896
published_at	2026-04-18T12:55:00Z

value	0.00597
scoring_system	epss
scoring_elements	0.69321
published_at	2026-04-07T12:55:00Z

value	0.00597
scoring_system	epss
scoring_elements	0.69371
published_at	2026-04-08T12:55:00Z

value	0.00597
scoring_system	epss
scoring_elements	0.69324
published_at	2026-04-02T12:55:00Z

value	0.00597
scoring_system	epss
scoring_elements	0.69341
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-40217

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40217
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40217

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2235789
reference_id	2235789
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2235789

reference_url	https://security.gentoo.org/glsa/202405-01
reference_id	GLSA-202405-01
reference_type
scores
url	https://security.gentoo.org/glsa/202405-01

reference_url

https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html

reference_id

msg00017.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/

url

https://lists.debian.org/debian-lts-announce/2023/10/msg00017.html

reference_url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_id

msg00022.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/

url

https://lists.debian.org/debian-lts-announce/2023/09/msg00022.html

reference_url

https://security.netapp.com/advisory/ntap-20231006-0014/

reference_id

ntap-20231006-0014

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/

url

https://security.netapp.com/advisory/ntap-20231006-0014/

reference_url

https://mail.python.org/archives/list/security-announce%40python.org/thread/PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY/

reference_id

PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/

url

https://mail.python.org/archives/list/security-announce%40python.org/thread/PEPLII27KYHLF4AK3ZQGKYNCRERG4YXY/

reference_url	https://access.redhat.com/errata/RHSA-2023:5456
reference_id	RHSA-2023:5456
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5456

reference_url	https://access.redhat.com/errata/RHSA-2023:5462
reference_id	RHSA-2023:5462
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5462

reference_url	https://access.redhat.com/errata/RHSA-2023:5463
reference_id	RHSA-2023:5463
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5463

reference_url	https://access.redhat.com/errata/RHSA-2023:5472
reference_id	RHSA-2023:5472
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5472

reference_url	https://access.redhat.com/errata/RHSA-2023:5528
reference_id	RHSA-2023:5528
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5528

reference_url	https://access.redhat.com/errata/RHSA-2023:5531
reference_id	RHSA-2023:5531
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5531

reference_url	https://access.redhat.com/errata/RHSA-2023:5990
reference_id	RHSA-2023:5990
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5990

reference_url	https://access.redhat.com/errata/RHSA-2023:5991
reference_id	RHSA-2023:5991
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5991

reference_url	https://access.redhat.com/errata/RHSA-2023:5992
reference_id	RHSA-2023:5992
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5992

reference_url	https://access.redhat.com/errata/RHSA-2023:5993
reference_id	RHSA-2023:5993
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5993

reference_url	https://access.redhat.com/errata/RHSA-2023:5994
reference_id	RHSA-2023:5994
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5994

reference_url	https://access.redhat.com/errata/RHSA-2023:5995
reference_id	RHSA-2023:5995
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5995

reference_url	https://access.redhat.com/errata/RHSA-2023:5996
reference_id	RHSA-2023:5996
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5996

reference_url	https://access.redhat.com/errata/RHSA-2023:5997
reference_id	RHSA-2023:5997
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5997

reference_url	https://access.redhat.com/errata/RHSA-2023:5998
reference_id	RHSA-2023:5998
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5998

reference_url	https://access.redhat.com/errata/RHSA-2023:6068
reference_id	RHSA-2023:6068
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6068

reference_url	https://access.redhat.com/errata/RHSA-2023:6069
reference_id	RHSA-2023:6069
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6069

reference_url	https://access.redhat.com/errata/RHSA-2023:6290
reference_id	RHSA-2023:6290
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6290

reference_url	https://access.redhat.com/errata/RHSA-2023:6793
reference_id	RHSA-2023:6793
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6793

reference_url	https://access.redhat.com/errata/RHSA-2023:6823
reference_id	RHSA-2023:6823
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6823

reference_url	https://access.redhat.com/errata/RHSA-2023:6885
reference_id	RHSA-2023:6885
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6885

reference_url

https://www.python.org/dev/security/

reference_id

security

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-02T16:31:39Z/

url

https://www.python.org/dev/security/

reference_url	https://usn.ubuntu.com/6513-1/
reference_id	USN-6513-1
reference_type
scores
url	https://usn.ubuntu.com/6513-1/

reference_url	https://usn.ubuntu.com/6513-2/
reference_id	USN-6513-2
reference_type
scores
url	https://usn.ubuntu.com/6513-2/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/7180-1/
reference_id	USN-7180-1
reference_type
scores
url	https://usn.ubuntu.com/7180-1/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u2?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u2?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u2%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2023-40217

risk_score 3.9

exploitability 0.5

weighted_severity 7.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4z89-3tfk-pyge

url VCID-757r-fs6p-qqdd

vulnerability_id VCID-757r-fs6p-qqdd

summary Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4517.json

reference_id

reference_type

scores

value	7.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4517.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-4517

reference_id

reference_type

scores

value	0.00303
scoring_system	epss
scoring_elements	0.53579
published_at	2026-04-02T12:55:00Z

value	0.00303
scoring_system	epss
scoring_elements	0.53625
published_at	2026-04-08T12:55:00Z

value	0.00303
scoring_system	epss
scoring_elements	0.53671
published_at	2026-04-11T12:55:00Z

value	0.00303
scoring_system	epss
scoring_elements	0.53622
published_at	2026-04-09T12:55:00Z

value	0.00303
scoring_system	epss
scoring_elements	0.53606
published_at	2026-04-04T12:55:00Z

value	0.00303
scoring_system	epss
scoring_elements	0.53576
published_at	2026-04-07T12:55:00Z

value	0.00403
scoring_system	epss
scoring_elements	0.60895
published_at	2026-04-12T12:55:00Z

value	0.00403
scoring_system	epss
scoring_elements	0.60876
published_at	2026-04-13T12:55:00Z

value	0.00403
scoring_system	epss
scoring_elements	0.60923
published_at	2026-04-18T12:55:00Z

value	0.00403
scoring_system	epss
scoring_elements	0.60918
published_at	2026-04-16T12:55:00Z

value	0.00403
scoring_system	epss
scoring_elements	0.60907
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-4517

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/135034

reference_id

135034

reference_type

scores

value	9.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/

url

https://github.com/python/cpython/issues/135034

reference_url

https://github.com/python/cpython/pull/135037

reference_id

135037

reference_type

scores

value	9.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/

url

https://github.com/python/cpython/pull/135037

reference_url

https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da

reference_id

19de092debb3d7e832e5672cc2f7b788d35951da

reference_type

scores

value	9.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/

url

https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2370016
reference_id	2370016
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2370016

reference_url

https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9

reference_id

28463dba112af719df1e8b0391c46787ad756dd9

reference_type

scores

value	9.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/

url

https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9

reference_url

https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a

reference_id

3612d8f51741b11f36f8fb0494d79086bac9390a

reference_type

scores

value	9.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/

url

https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a

reference_url

https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_id

4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_type

scores

value	9.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/

url

https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_url

https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f

reference_id

52398e33eff261329a0180ac1d54f42f

reference_type

scores

value	9.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/

url

https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f

reference_url

https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a

reference_id

9c1110ef6652687d7c55f590f909720eddde965a

reference_type

scores

value	9.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/

url

https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a

reference_url

https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_id

9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_type

scores

value	9.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/

url

https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_url

https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_id

aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_type

scores

value	9.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/

url

https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_url

https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_id

dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_type

scores

value	9.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/

url

https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_url	https://security.gentoo.org/glsa/202506-07
reference_id	GLSA-202506-07
reference_type
scores
url	https://security.gentoo.org/glsa/202506-07

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/

reference_id

MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG

reference_type

scores

value	9.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-06-03T13:28:11Z/

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-10-24T03:55:18Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/

reference_url	https://access.redhat.com/errata/RHSA-2025:10026
reference_id	RHSA-2025:10026
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10026

reference_url	https://access.redhat.com/errata/RHSA-2025:10028
reference_id	RHSA-2025:10028
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10028

reference_url	https://access.redhat.com/errata/RHSA-2025:10031
reference_id	RHSA-2025:10031
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10031

reference_url	https://access.redhat.com/errata/RHSA-2025:10128
reference_id	RHSA-2025:10128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10128

reference_url	https://access.redhat.com/errata/RHSA-2025:10136
reference_id	RHSA-2025:10136
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10136

reference_url	https://access.redhat.com/errata/RHSA-2025:10140
reference_id	RHSA-2025:10140
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10140

reference_url	https://access.redhat.com/errata/RHSA-2025:10148
reference_id	RHSA-2025:10148
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10148

reference_url	https://access.redhat.com/errata/RHSA-2025:10189
reference_id	RHSA-2025:10189
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10189

reference_url	https://access.redhat.com/errata/RHSA-2025:10399
reference_id	RHSA-2025:10399
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10399

reference_url	https://access.redhat.com/errata/RHSA-2025:10484
reference_id	RHSA-2025:10484
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10484

reference_url	https://access.redhat.com/errata/RHSA-2025:10602
reference_id	RHSA-2025:10602
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10602

reference_url	https://access.redhat.com/errata/RHSA-2025:11386
reference_id	RHSA-2025:11386
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:11386

reference_url	https://access.redhat.com/errata/RHSA-2025:13267
reference_id	RHSA-2025:13267
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13267

reference_url	https://access.redhat.com/errata/RHSA-2025:18219
reference_id	RHSA-2025:18219
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:18219

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url	https://access.redhat.com/errata/RHSA-2025:9918
reference_id	RHSA-2025:9918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9918

reference_url	https://access.redhat.com/errata/RHSA-2026:0934
reference_id	RHSA-2026:0934
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0934

reference_url	https://usn.ubuntu.com/7583-1/
reference_id	USN-7583-1
reference_type
scores
url	https://usn.ubuntu.com/7583-1/

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2025-4517

risk_score 4.2

exploitability 0.5

weighted_severity 8.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-757r-fs6p-qqdd

url VCID-7ka5-7jrn-dber

vulnerability_id VCID-7ka5-7jrn-dber

summary Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6597.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6597.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-6597

reference_id

reference_type

scores

value	0.00077
scoring_system	epss
scoring_elements	0.23141
published_at	2026-04-02T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22994
published_at	2026-04-21T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23185
published_at	2026-04-04T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.22974
published_at	2026-04-07T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23048
published_at	2026-04-08T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23101
published_at	2026-04-09T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23121
published_at	2026-04-11T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23083
published_at	2026-04-12T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23028
published_at	2026-04-13T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23041
published_at	2026-04-16T12:55:00Z

value	0.00077
scoring_system	epss
scoring_elements	0.23033
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-6597

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6597
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6597

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/commit/02a9259c717738dfe6b463c44d7e17f2b6d2cb3a

reference_id

02a9259c717738dfe6b463c44d7e17f2b6d2cb3a

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/commit/02a9259c717738dfe6b463c44d7e17f2b6d2cb3a

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070135
reference_id	1070135
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070135

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2276518
reference_id	2276518
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2276518

reference_url

http://www.openwall.com/lists/oss-security/2024/03/20/5

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

http://www.openwall.com/lists/oss-security/2024/03/20/5

reference_url

https://github.com/python/cpython/commit/5585334d772b253a01a6730e8202ffb1607c3d25

reference_id

5585334d772b253a01a6730e8202ffb1607c3d25

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/commit/5585334d772b253a01a6730e8202ffb1607c3d25

reference_url

https://github.com/python/cpython/commit/6ceb8aeda504b079fef7a57b8d81472f15cdd9a5

reference_id

6ceb8aeda504b079fef7a57b8d81472f15cdd9a5

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/commit/6ceb8aeda504b079fef7a57b8d81472f15cdd9a5

reference_url

https://github.com/python/cpython/commit/81c16cd94ec38d61aa478b9a452436dc3b1b524d

reference_id

81c16cd94ec38d61aa478b9a452436dc3b1b524d

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/commit/81c16cd94ec38d61aa478b9a452436dc3b1b524d

reference_url

https://github.com/python/cpython/commit/8eaeefe49d179ca4908d052745e3bb8b6f238f82

reference_id

8eaeefe49d179ca4908d052745e3bb8b6f238f82

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/commit/8eaeefe49d179ca4908d052745e3bb8b6f238f82

reference_url

https://github.com/python/cpython/issues/91133

reference_id

91133

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/issues/91133

reference_url

https://github.com/python/cpython/commit/d54e22a669ae6e987199bb5d2c69bb5a46b0083b

reference_id

d54e22a669ae6e987199bb5d2c69bb5a46b0083b

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://github.com/python/cpython/commit/d54e22a669ae6e987199bb5d2c69bb5a46b0083b

reference_url	https://security.gentoo.org/glsa/202405-01
reference_id	GLSA-202405-01
reference_type
scores
url	https://security.gentoo.org/glsa/202405-01

reference_url

https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html

reference_id

msg00025.html

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/

reference_id

Q5C6ATFC67K53XFV4KE45325S7NS62LD

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/Q5C6ATFC67K53XFV4KE45325S7NS62LD/

reference_url	https://access.redhat.com/errata/RHSA-2024:3347
reference_id	RHSA-2024:3347
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3347

reference_url	https://access.redhat.com/errata/RHSA-2024:3391
reference_id	RHSA-2024:3391
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3391

reference_url	https://access.redhat.com/errata/RHSA-2024:3466
reference_id	RHSA-2024:3466
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3466

reference_url	https://access.redhat.com/errata/RHSA-2024:4058
reference_id	RHSA-2024:4058
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4058

reference_url	https://access.redhat.com/errata/RHSA-2024:4077
reference_id	RHSA-2024:4077
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4077

reference_url	https://access.redhat.com/errata/RHSA-2024:4078
reference_id	RHSA-2024:4078
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4078

reference_url	https://access.redhat.com/errata/RHSA-2024:4166
reference_id	RHSA-2024:4166
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4166

reference_url	https://access.redhat.com/errata/RHSA-2024:4370
reference_id	RHSA-2024:4370
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4370

reference_url	https://access.redhat.com/errata/RHSA-2024:4406
reference_id	RHSA-2024:4406
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4406

reference_url	https://access.redhat.com/errata/RHSA-2024:4456
reference_id	RHSA-2024:4456
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4456

reference_url	https://access.redhat.com/errata/RHSA-2024:4896
reference_id	RHSA-2024:4896
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4896

reference_url	https://access.redhat.com/errata/RHSA-2024:5535
reference_id	RHSA-2024:5535
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:5535

reference_url	https://access.redhat.com/errata/RHSA-2024:5689
reference_id	RHSA-2024:5689
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:5689

reference_url	https://access.redhat.com/errata/RHSA-2025:0364
reference_id	RHSA-2025:0364
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0364

reference_url	https://access.redhat.com/errata/RHSA-2025:0646
reference_id	RHSA-2025:0646
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0646

reference_url	https://access.redhat.com/errata/RHSA-2025:0650
reference_id	RHSA-2025:0650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0650

reference_url	https://access.redhat.com/errata/RHSA-2025:0832
reference_id	RHSA-2025:0832
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0832

reference_url	https://access.redhat.com/errata/RHSA-2025:1116
reference_id	RHSA-2025:1116
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1116

reference_url	https://access.redhat.com/errata/RHSA-2025:1120
reference_id	RHSA-2025:1120
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1120

reference_url	https://access.redhat.com/errata/RHSA-2025:2705
reference_id	RHSA-2025:2705
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:2705

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/

reference_id

T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/

reference_id

U5VHWS52HGD743C47UMCSAK2A773M2YE

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-05T19:08:44Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u2?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u2?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u2%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2023-6597

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7ka5-7jrn-dber

url VCID-7s7y-9bw5-m3ep

vulnerability_id VCID-7s7y-9bw5-m3ep

summary Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6232.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6232.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-6232

reference_id

reference_type

scores

value	0.03175
scoring_system	epss
scoring_elements	0.86908
published_at	2026-04-02T12:55:00Z

value	0.03175
scoring_system	epss
scoring_elements	0.86927
published_at	2026-04-04T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88478
published_at	2026-04-21T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88442
published_at	2026-04-07T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88461
published_at	2026-04-08T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88467
published_at	2026-04-09T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88477
published_at	2026-04-11T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.8847
published_at	2026-04-12T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88469
published_at	2026-04-13T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.88483
published_at	2026-04-16T12:55:00Z

value	0.04022
scoring_system	epss
scoring_elements	0.8848
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-6232

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6232
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6232

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/121285

reference_id

121285

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/issues/121285

reference_url

https://github.com/python/cpython/pull/121286

reference_id

121286

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/pull/121286

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2309426
reference_id	2309426
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2309426

reference_url

https://github.com/python/cpython/commit/34ddb64d088dd7ccc321f6103d23153256caa5d4

reference_id

34ddb64d088dd7ccc321f6103d23153256caa5d4

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/34ddb64d088dd7ccc321f6103d23153256caa5d4

reference_url

https://github.com/python/cpython/commit/4eaf4891c12589e3c7bdad5f5b076e4c8392dd06

reference_id

4eaf4891c12589e3c7bdad5f5b076e4c8392dd06

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/4eaf4891c12589e3c7bdad5f5b076e4c8392dd06

reference_url

https://github.com/python/cpython/commit/743acbe872485dc18df4d8ab2dc7895187f062c4

reference_id

743acbe872485dc18df4d8ab2dc7895187f062c4

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/743acbe872485dc18df4d8ab2dc7895187f062c4

reference_url

https://github.com/python/cpython/commit/7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d

reference_id

7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/7d1f50cd92ff7e10a1c15a8f591dde8a6843a64d

reference_url

https://github.com/python/cpython/commit/b4225ca91547aa97ed3aca391614afbb255bc877

reference_id

b4225ca91547aa97ed3aca391614afbb255bc877

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/b4225ca91547aa97ed3aca391614afbb255bc877

reference_url

https://github.com/python/cpython/commit/d449caf8a179e3b954268b3a88eb9170be3c8fbf

reference_id

d449caf8a179e3b954268b3a88eb9170be3c8fbf

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/d449caf8a179e3b954268b3a88eb9170be3c8fbf

reference_url

https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373

reference_id

ed3a49ea734ada357ff4442996fd4ae71d253373

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://github.com/python/cpython/commit/ed3a49ea734ada357ff4442996fd4ae71d253373

reference_url	https://security.gentoo.org/glsa/202506-07
reference_id	GLSA-202506-07
reference_type
scores
url	https://security.gentoo.org/glsa/202506-07

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY/

reference_id

JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-04T15:24:31Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/JRYFTPRHZRTLMZLWQEUHZSJXNHM4ACTY/

reference_url	https://access.redhat.com/errata/RHSA-2024:6909
reference_id	RHSA-2024:6909
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6909

reference_url	https://access.redhat.com/errata/RHSA-2024:6975
reference_id	RHSA-2024:6975
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6975

reference_url	https://access.redhat.com/errata/RHSA-2024:7415
reference_id	RHSA-2024:7415
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7415

reference_url	https://access.redhat.com/errata/RHSA-2024:7647
reference_id	RHSA-2024:7647
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7647

reference_url	https://access.redhat.com/errata/RHSA-2024:8130
reference_id	RHSA-2024:8130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8130

reference_url	https://access.redhat.com/errata/RHSA-2024:8359
reference_id	RHSA-2024:8359
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8359

reference_url	https://access.redhat.com/errata/RHSA-2024:8374
reference_id	RHSA-2024:8374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8374

reference_url	https://access.redhat.com/errata/RHSA-2024:8446
reference_id	RHSA-2024:8446
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8446

reference_url	https://access.redhat.com/errata/RHSA-2024:8447
reference_id	RHSA-2024:8447
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8447

reference_url	https://access.redhat.com/errata/RHSA-2024:8490
reference_id	RHSA-2024:8490
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8490

reference_url	https://access.redhat.com/errata/RHSA-2024:8504
reference_id	RHSA-2024:8504
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8504

reference_url	https://access.redhat.com/errata/RHSA-2024:8797
reference_id	RHSA-2024:8797
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8797

reference_url	https://access.redhat.com/errata/RHSA-2024:8836
reference_id	RHSA-2024:8836
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8836

reference_url	https://access.redhat.com/errata/RHSA-2024:8838
reference_id	RHSA-2024:8838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8838

reference_url	https://access.redhat.com/errata/RHSA-2024:8977
reference_id	RHSA-2024:8977
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8977

reference_url	https://access.redhat.com/errata/RHSA-2024:9450
reference_id	RHSA-2024:9450
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9450

reference_url	https://access.redhat.com/errata/RHSA-2024:9451
reference_id	RHSA-2024:9451
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9451

reference_url	https://access.redhat.com/errata/RHSA-2024:9468
reference_id	RHSA-2024:9468
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9468

reference_url	https://access.redhat.com/errata/RHSA-2025:1750
reference_id	RHSA-2025:1750
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:1750

reference_url	https://usn.ubuntu.com/7015-1/
reference_id	USN-7015-1
reference_type
scores
url	https://usn.ubuntu.com/7015-1/

reference_url	https://usn.ubuntu.com/7015-2/
reference_id	USN-7015-2
reference_type
scores
url	https://usn.ubuntu.com/7015-2/

reference_url	https://usn.ubuntu.com/7015-5/
reference_id	USN-7015-5
reference_type
scores
url	https://usn.ubuntu.com/7015-5/

reference_url	https://usn.ubuntu.com/7488-1/
reference_id	USN-7488-1
reference_type
scores
url	https://usn.ubuntu.com/7488-1/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u4?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u4?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u4%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-6232

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7s7y-9bw5-m3ep

url VCID-8hug-fhhb-sbgt

vulnerability_id VCID-8hug-fhhb-sbgt

summary python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5642.json

reference_id

reference_type

scores

value	2.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-5642.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-5642

reference_id

reference_type

scores

value	0.00161
scoring_system	epss
scoring_elements	0.36944
published_at	2026-04-13T12:55:00Z

value	0.00161
scoring_system	epss
scoring_elements	0.3697
published_at	2026-04-12T12:55:00Z

value	0.00161
scoring_system	epss
scoring_elements	0.37004
published_at	2026-04-11T12:55:00Z

value	0.00161
scoring_system	epss
scoring_elements	0.36996
published_at	2026-04-09T12:55:00Z

value	0.00187
scoring_system	epss
scoring_elements	0.40497
published_at	2026-04-07T12:55:00Z

value	0.00187
scoring_system	epss
scoring_elements	0.40548
published_at	2026-04-08T12:55:00Z

value	0.00192
scoring_system	epss
scoring_elements	0.41113
published_at	2026-04-21T12:55:00Z

value	0.00192
scoring_system	epss
scoring_elements	0.41184
published_at	2026-04-02T12:55:00Z

value	0.00192
scoring_system	epss
scoring_elements	0.41214
published_at	2026-04-04T12:55:00Z

value	0.00192
scoring_system	epss
scoring_elements	0.41215
published_at	2026-04-16T12:55:00Z

value	0.00192
scoring_system	epss
scoring_elements	0.41186
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-5642

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5642
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-5642

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/121227

reference_id

121227

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/

url

https://github.com/python/cpython/issues/121227

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2294682
reference_id	2294682
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2294682

reference_url

https://github.com/python/cpython/pull/23014

reference_id

23014

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/

url

https://github.com/python/cpython/pull/23014

reference_url

https://github.com/python/cpython/commit/39258d3595300bc7b952854c915f63ae2d4b9c3e

reference_id

39258d3595300bc7b952854c915f63ae2d4b9c3e

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/

url

https://github.com/python/cpython/commit/39258d3595300bc7b952854c915f63ae2d4b9c3e

reference_url

http://www.openwall.com/lists/oss-security/2024/06/28/4

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/

url

http://www.openwall.com/lists/oss-security/2024/06/28/4

reference_url

https://github.com/python/cpython/commit/a2cdbb6e8188ba9ba8b356b28d91bff60e86fe31

reference_id

a2cdbb6e8188ba9ba8b356b28d91bff60e86fe31

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/

url

https://github.com/python/cpython/commit/a2cdbb6e8188ba9ba8b356b28d91bff60e86fe31

reference_url

https://jbp.io/2024/06/27/cve-2024-5535-openssl-memory-safety.html

reference_id

cve-2024-5535-openssl-memory-safety.html

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/

url

https://jbp.io/2024/06/27/cve-2024-5535-openssl-memory-safety.html

reference_url

https://security.netapp.com/advisory/ntap-20240726-0005/

reference_id

ntap-20240726-0005

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/

url

https://security.netapp.com/advisory/ntap-20240726-0005/

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/PLP2JI3PJY33YG6P5BZYSSNU66HASXBQ/

reference_id

PLP2JI3PJY33YG6P5BZYSSNU66HASXBQ

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-06-28T13:47:34Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/PLP2JI3PJY33YG6P5BZYSSNU66HASXBQ/

reference_url	https://access.redhat.com/errata/RHSA-2025:23342
reference_id	RHSA-2025:23342
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23342

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url	https://access.redhat.com/errata/RHSA-2026:0414
reference_id	RHSA-2026:0414
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0414

reference_url	https://access.redhat.com/errata/RHSA-2026:0685
reference_id	RHSA-2026:0685
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0685

reference_url	https://access.redhat.com/errata/RHSA-2026:1652
reference_id	RHSA-2026:1652
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1652

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-5642

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8hug-fhhb-sbgt

url VCID-8zdt-4q7m-t7ht

vulnerability_id VCID-8zdt-4q7m-t7ht

summary Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4330.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4330.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-4330

reference_id

reference_type

scores

value	0.01012
scoring_system	epss
scoring_elements	0.77068
published_at	2026-04-02T12:55:00Z

value	0.01012
scoring_system	epss
scoring_elements	0.77158
published_at	2026-04-21T12:55:00Z

value	0.01012
scoring_system	epss
scoring_elements	0.77097
published_at	2026-04-04T12:55:00Z

value	0.01012
scoring_system	epss
scoring_elements	0.7708
published_at	2026-04-07T12:55:00Z

value	0.01012
scoring_system	epss
scoring_elements	0.77112
published_at	2026-04-08T12:55:00Z

value	0.01012
scoring_system	epss
scoring_elements	0.77122
published_at	2026-04-09T12:55:00Z

value	0.01012
scoring_system	epss
scoring_elements	0.77149
published_at	2026-04-11T12:55:00Z

value	0.01012
scoring_system	epss
scoring_elements	0.77128
published_at	2026-04-12T12:55:00Z

value	0.01012
scoring_system	epss
scoring_elements	0.77123
published_at	2026-04-13T12:55:00Z

value	0.01012
scoring_system	epss
scoring_elements	0.77164
published_at	2026-04-16T12:55:00Z

value	0.01012
scoring_system	epss
scoring_elements	0.77166
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-4330

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/135034

reference_id

135034

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/

url

https://github.com/python/cpython/issues/135034

reference_url

https://github.com/python/cpython/pull/135037

reference_id

135037

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/

url

https://github.com/python/cpython/pull/135037

reference_url

https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da

reference_id

19de092debb3d7e832e5672cc2f7b788d35951da

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/

url

https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2370014
reference_id	2370014
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2370014

reference_url

https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9

reference_id

28463dba112af719df1e8b0391c46787ad756dd9

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/

url

https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9

reference_url

https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a

reference_id

3612d8f51741b11f36f8fb0494d79086bac9390a

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/

url

https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a

reference_url

https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_id

4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/

url

https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_url

https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f

reference_id

52398e33eff261329a0180ac1d54f42f

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/

url

https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f

reference_url

https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a

reference_id

9c1110ef6652687d7c55f590f909720eddde965a

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/

url

https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a

reference_url

https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_id

9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/

url

https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_url

https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_id

aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/

url

https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_url

https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_id

dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/

url

https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_url	https://security.gentoo.org/glsa/202506-07
reference_id	GLSA-202506-07
reference_type
scores
url	https://security.gentoo.org/glsa/202506-07

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/

reference_id

MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:27:07Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/

reference_url	https://access.redhat.com/errata/RHSA-2025:10026
reference_id	RHSA-2025:10026
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10026

reference_url	https://access.redhat.com/errata/RHSA-2025:10028
reference_id	RHSA-2025:10028
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10028

reference_url	https://access.redhat.com/errata/RHSA-2025:10031
reference_id	RHSA-2025:10031
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10031

reference_url	https://access.redhat.com/errata/RHSA-2025:10128
reference_id	RHSA-2025:10128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10128

reference_url	https://access.redhat.com/errata/RHSA-2025:10136
reference_id	RHSA-2025:10136
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10136

reference_url	https://access.redhat.com/errata/RHSA-2025:10140
reference_id	RHSA-2025:10140
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10140

reference_url	https://access.redhat.com/errata/RHSA-2025:10148
reference_id	RHSA-2025:10148
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10148

reference_url	https://access.redhat.com/errata/RHSA-2025:10189
reference_id	RHSA-2025:10189
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10189

reference_url	https://access.redhat.com/errata/RHSA-2025:10399
reference_id	RHSA-2025:10399
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10399

reference_url	https://access.redhat.com/errata/RHSA-2025:10484
reference_id	RHSA-2025:10484
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10484

reference_url	https://access.redhat.com/errata/RHSA-2025:10602
reference_id	RHSA-2025:10602
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10602

reference_url	https://access.redhat.com/errata/RHSA-2025:13267
reference_id	RHSA-2025:13267
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13267

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url	https://access.redhat.com/errata/RHSA-2025:9918
reference_id	RHSA-2025:9918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9918

reference_url	https://usn.ubuntu.com/7583-1/
reference_id	USN-7583-1
reference_type
scores
url	https://usn.ubuntu.com/7583-1/

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2025-4330

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8zdt-4q7m-t7ht

url VCID-9nvp-aus1-9yed

vulnerability_id VCID-9nvp-aus1-9yed

summary Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6923.json

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-6923.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-6923

reference_id

reference_type

scores

value	0.00238
scoring_system	epss
scoring_elements	0.46874
published_at	2026-04-21T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.4685
published_at	2026-04-02T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46868
published_at	2026-04-04T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.4687
published_at	2026-04-09T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46893
published_at	2026-04-11T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46866
published_at	2026-04-12T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46873
published_at	2026-04-13T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46929
published_at	2026-04-16T12:55:00Z

value	0.00238
scoring_system	epss
scoring_elements	0.46924
published_at	2026-04-18T12:55:00Z

value	0.00322
scoring_system	epss
scoring_elements	0.55326
published_at	2026-04-08T12:55:00Z

value	0.00322
scoring_system	epss
scoring_elements	0.55276
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-6923

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6923
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-6923

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/commit/06f28dc236708f72871c64d4bc4b4ea144c50147

reference_id

06f28dc236708f72871c64d4bc4b4ea144c50147

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/06f28dc236708f72871c64d4bc4b4ea144c50147

reference_url

https://github.com/python/cpython/commit/097633981879b3c9de9a1dd120d3aa585ecc2384

reference_id

097633981879b3c9de9a1dd120d3aa585ecc2384

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/097633981879b3c9de9a1dd120d3aa585ecc2384

reference_url

https://github.com/python/cpython/issues/121650

reference_id

121650

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/issues/121650

reference_url

https://github.com/python/cpython/pull/122233

reference_id

122233

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/pull/122233

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2302255
reference_id	2302255
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2302255

reference_url

https://github.com/python/cpython/commit/4766d1200fdf8b6728137aa2927a297e224d5fa7

reference_id

4766d1200fdf8b6728137aa2927a297e224d5fa7

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/4766d1200fdf8b6728137aa2927a297e224d5fa7

reference_url

https://github.com/python/cpython/commit/4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0

reference_id

4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/4aaa4259b5a6e664b7316a4d60bdec7ee0f124d0

reference_url

https://github.com/python/cpython/commit/b158a76ce094897c870fb6b3de62887b7ccc33f1

reference_id

b158a76ce094897c870fb6b3de62887b7ccc33f1

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/b158a76ce094897c870fb6b3de62887b7ccc33f1

reference_url

https://github.com/python/cpython/commit/f7be505d137a22528cb0fc004422c0081d5d90e6

reference_id

f7be505d137a22528cb0fc004422c0081d5d90e6

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/f7be505d137a22528cb0fc004422c0081d5d90e6

reference_url

https://github.com/python/cpython/commit/f7c0f09e69e950cf3c5ada9dbde93898eb975533

reference_id

f7c0f09e69e950cf3c5ada9dbde93898eb975533

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://github.com/python/cpython/commit/f7c0f09e69e950cf3c5ada9dbde93898eb975533

reference_url	https://security.gentoo.org/glsa/202506-07
reference_id	GLSA-202506-07
reference_type
scores
url	https://security.gentoo.org/glsa/202506-07

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW/

reference_id

QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-08-01T18:15:02Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/QH3BUOE2DYQBWP7NAQ7UNHPPOELKISRW/

reference_url	https://access.redhat.com/errata/RHSA-2024:10135
reference_id	RHSA-2024:10135
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10135

reference_url	https://access.redhat.com/errata/RHSA-2024:11109
reference_id	RHSA-2024:11109
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11109

reference_url	https://access.redhat.com/errata/RHSA-2024:5962
reference_id	RHSA-2024:5962
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:5962

reference_url	https://access.redhat.com/errata/RHSA-2024:6146
reference_id	RHSA-2024:6146
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6146

reference_url	https://access.redhat.com/errata/RHSA-2024:6163
reference_id	RHSA-2024:6163
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6163

reference_url	https://access.redhat.com/errata/RHSA-2024:6179
reference_id	RHSA-2024:6179
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6179

reference_url	https://access.redhat.com/errata/RHSA-2024:6909
reference_id	RHSA-2024:6909
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6909

reference_url	https://access.redhat.com/errata/RHSA-2024:6915
reference_id	RHSA-2024:6915
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6915

reference_url	https://access.redhat.com/errata/RHSA-2024:6961
reference_id	RHSA-2024:6961
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6961

reference_url	https://access.redhat.com/errata/RHSA-2024:6962
reference_id	RHSA-2024:6962
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6962

reference_url	https://access.redhat.com/errata/RHSA-2024:6975
reference_id	RHSA-2024:6975
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6975

reference_url	https://access.redhat.com/errata/RHSA-2024:7137
reference_id	RHSA-2024:7137
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7137

reference_url	https://access.redhat.com/errata/RHSA-2024:7213
reference_id	RHSA-2024:7213
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7213

reference_url	https://access.redhat.com/errata/RHSA-2024:7374
reference_id	RHSA-2024:7374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7374

reference_url	https://access.redhat.com/errata/RHSA-2024:7415
reference_id	RHSA-2024:7415
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:7415

reference_url	https://access.redhat.com/errata/RHSA-2024:8103
reference_id	RHSA-2024:8103
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:8103

reference_url	https://usn.ubuntu.com/7015-1/
reference_id	USN-7015-1
reference_type
scores
url	https://usn.ubuntu.com/7015-1/

reference_url	https://usn.ubuntu.com/7015-5/
reference_id	USN-7015-5
reference_type
scores
url	https://usn.ubuntu.com/7015-5/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u5?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u5?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u5%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-6923

risk_score 3.0

exploitability 0.5

weighted_severity 6.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9nvp-aus1-9yed

url VCID-9sms-mhht-n3aq

vulnerability_id VCID-9sms-mhht-n3aq

summary python: Mishandling of comma during folding and unicode-encoding of email headers

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1795.json

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-1795.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-1795

reference_id

reference_type

scores

value	0.00593
scoring_system	epss
scoring_elements	0.6923
published_at	2026-04-04T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.6921
published_at	2026-04-02T12:55:00Z

value	0.00593
scoring_system	epss
scoring_elements	0.69212
published_at	2026-04-07T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73244
published_at	2026-04-21T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73224
published_at	2026-04-11T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73205
published_at	2026-04-12T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73199
published_at	2026-04-13T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73242
published_at	2026-04-16T12:55:00Z

value	0.00753
scoring_system	epss
scoring_elements	0.73251
published_at	2026-04-18T12:55:00Z

value	0.00791
scoring_system	epss
scoring_elements	0.73886
published_at	2026-04-09T12:55:00Z

value	0.00873
scoring_system	epss
scoring_elements	0.75243
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-1795

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1795
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-1795

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/commit/09fab93c3d857496c0bd162797fab816c311ee48

reference_id

09fab93c3d857496c0bd162797fab816c311ee48

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/commit/09fab93c3d857496c0bd162797fab816c311ee48

reference_url

https://github.com/python/cpython/issues/100884

reference_id

100884

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/issues/100884

reference_url

https://github.com/python/cpython/pull/100885

reference_id

100885

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/pull/100885

reference_url

https://github.com/python/cpython/pull/119099

reference_id

119099

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/pull/119099

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2349061
reference_id	2349061
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2349061

reference_url

https://github.com/python/cpython/commit/70754d21c288535e86070ca7a6e90dcb670b8593

reference_id

70754d21c288535e86070ca7a6e90dcb670b8593

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/commit/70754d21c288535e86070ca7a6e90dcb670b8593

reference_url

https://github.com/python/cpython/commit/9148b77e0af91cdacaa7fe3dfac09635c3fe9a74

reference_id

9148b77e0af91cdacaa7fe3dfac09635c3fe9a74

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/commit/9148b77e0af91cdacaa7fe3dfac09635c3fe9a74

reference_url

https://github.com/python/cpython/commit/a4ef689ce670684ec132204b1cd03720c8e0a03d

reference_id

a4ef689ce670684ec132204b1cd03720c8e0a03d

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/commit/a4ef689ce670684ec132204b1cd03720c8e0a03d

reference_url

https://github.com/python/cpython/commit/d4df3c55e4c5513947f907f24766b34d2ae8c090

reference_id

d4df3c55e4c5513947f907f24766b34d2ae8c090

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://github.com/python/cpython/commit/d4df3c55e4c5513947f907f24766b34d2ae8c090

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR/

reference_id

MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-28T20:30:47Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/MB62IZMEC3UM6SGHP5LET5JX2Y7H4ZUR/

reference_url	https://usn.ubuntu.com/7570-1/
reference_id	USN-7570-1
reference_type
scores
url	https://usn.ubuntu.com/7570-1/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2025-1795

risk_score 1.4

exploitability 0.5

weighted_severity 2.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9sms-mhht-n3aq

url VCID-a8mv-mr3q-vygz

vulnerability_id VCID-a8mv-mr3q-vygz

summary Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-42919.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-42919.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-42919

reference_id

reference_type

scores

value	0.00034
scoring_system	epss
scoring_elements	0.09956
published_at	2026-04-02T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.10042
published_at	2026-04-11T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.0998
published_at	2026-04-13T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.10002
published_at	2026-04-12T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.10026
published_at	2026-04-09T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09978
published_at	2026-04-08T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.09902
published_at	2026-04-07T12:55:00Z

value	0.00034
scoring_system	epss
scoring_elements	0.10004
published_at	2026-04-04T12:55:00Z

value	0.00038
scoring_system	epss
scoring_elements	0.11444
published_at	2026-04-18T12:55:00Z

value	0.00038
scoring_system	epss
scoring_elements	0.11443
published_at	2026-04-16T12:55:00Z

value	0.00038
scoring_system	epss
scoring_elements	0.1157
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-42919

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42919
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42919

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2138705
reference_id	2138705
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2138705

reference_url

https://github.com/python/cpython/issues/97514

reference_id

97514

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://github.com/python/cpython/issues/97514

reference_url

https://github.com/python/cpython/issues/97514#issuecomment-1310277840

reference_id

97514#issuecomment-1310277840

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://github.com/python/cpython/issues/97514#issuecomment-1310277840

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FKGCQPIVHEAIJ77R3RSNSQWYBUDVWDKU/

reference_id

FKGCQPIVHEAIJ77R3RSNSQWYBUDVWDKU

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FKGCQPIVHEAIJ77R3RSNSQWYBUDVWDKU/

reference_url

https://security.netapp.com/advisory/ntap-20221209-0006/

reference_id

ntap-20221209-0006

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://security.netapp.com/advisory/ntap-20221209-0006/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2LHWWEI5OBQ6RELULMVU6KMDYG4WZXH/

reference_id

P2LHWWEI5OBQ6RELULMVU6KMDYG4WZXH

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2LHWWEI5OBQ6RELULMVU6KMDYG4WZXH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PI5DYIED6U26BGX5IRZWNCP6TY4M2ZGZ/

reference_id

PI5DYIED6U26BGX5IRZWNCP6TY4M2ZGZ

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PI5DYIED6U26BGX5IRZWNCP6TY4M2ZGZ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/

reference_id

QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R6KGIRHSENZ4QAB234Z36HVIDTRJ3MFI/

reference_id

R6KGIRHSENZ4QAB234Z36HVIDTRJ3MFI

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R6KGIRHSENZ4QAB234Z36HVIDTRJ3MFI/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/

reference_id

RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/

reference_url	https://access.redhat.com/errata/RHSA-2022:8492
reference_id	RHSA-2022:8492
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8492

reference_url	https://access.redhat.com/errata/RHSA-2022:8493
reference_id	RHSA-2022:8493
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8493

reference_url	https://usn.ubuntu.com/5713-1/
reference_id	USN-5713-1
reference_type
scores
url	https://usn.ubuntu.com/5713-1/

reference_url	https://usn.ubuntu.com/5888-1/
reference_id	USN-5888-1
reference_type
scores
url	https://usn.ubuntu.com/5888-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url

https://github.com/python/cpython/compare/v3.10.8...v3.10.9

reference_id

v3.10.8...v3.10.9

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://github.com/python/cpython/compare/v3.10.8...v3.10.9

reference_url

https://github.com/python/cpython/compare/v3.9.15...v3.9.16

reference_id

v3.9.15...v3.9.16

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://github.com/python/cpython/compare/v3.9.15...v3.9.16

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCRKBB5Y5EWTJUNC7LK665WO64DDXSTN/

reference_id

VCRKBB5Y5EWTJUNC7LK665WO64DDXSTN

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCRKBB5Y5EWTJUNC7LK665WO64DDXSTN/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XX6LLAXGZVZ327REY6MDZRMMP47LJ53P/

reference_id

XX6LLAXGZVZ327REY6MDZRMMP47LJ53P

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-05-02T18:38:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XX6LLAXGZVZ327REY6MDZRMMP47LJ53P/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.0-2?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.0-2?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.0-2%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2022-42919

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a8mv-mr3q-vygz

url VCID-dexx-3ssz-nqfg

vulnerability_id VCID-dexx-3ssz-nqfg

summary python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27043.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-27043.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-27043

reference_id

reference_type

scores

value	0.00175
scoring_system	epss
scoring_elements	0.39102
published_at	2026-04-11T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39083
published_at	2026-04-02T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39074
published_at	2026-04-08T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39064
published_at	2026-04-12T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39089
published_at	2026-04-09T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.38839
published_at	2026-04-21T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39069
published_at	2026-04-18T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39099
published_at	2026-04-16T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39044
published_at	2026-04-13T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39103
published_at	2026-04-04T12:55:00Z

value	0.00175
scoring_system	epss
scoring_elements	0.39021
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-27043

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27043
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27043

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/102988

reference_id

102988

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://github.com/python/cpython/issues/102988

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059298
reference_id	1059298
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059298

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072179
reference_id	1072179
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1072179

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2196183
reference_id	2196183
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2196183

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV/

reference_id

4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZAEFSFZDNBNJPNOUTLG5COISGQDLMGV/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC/

reference_id

75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/75DTHSTNOFFNAWHXKMDXS7EJWC6W2FUC/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH/

reference_id

ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ARI7VDSNTQVXRQFM6IK5GSSLEIYV4VZH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BQAKLUJMHFGVBRDPEY57BJGNCE5UUPHW/

reference_id

BQAKLUJMHFGVBRDPEY57BJGNCE5UUPHW

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BQAKLUJMHFGVBRDPEY57BJGNCE5UUPHW/

reference_url

https://python-security.readthedocs.io/vuln/email-parseaddr-realname.html

reference_id

email-parseaddr-realname.html

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://python-security.readthedocs.io/vuln/email-parseaddr-realname.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXYVPEZUA3465AEFX5JVFVP7KIFZMF3N/

reference_id

HXYVPEZUA3465AEFX5JVFVP7KIFZMF3N

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXYVPEZUA3465AEFX5JVFVP7KIFZMF3N/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z/

reference_id

N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/N6M5I6OQHJABNEYY555HUMMKX3Y4P25Z/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3/

reference_id

NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NEUNZSZ3CVSM2QWVYH3N2XGOCDWNYUA3/

reference_url

https://security.netapp.com/advisory/ntap-20230601-0003/

reference_id

ntap-20230601-0003

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://security.netapp.com/advisory/ntap-20230601-0003/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW/

reference_id

ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORLXS5YTKN65E2Q2NWKXMFS5FWQHRNZW/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC/

reference_id

P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2MAICLFDDO3QVNHTZ2OCERZQ34R2PIC/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH/

reference_id

P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P2W2BZQIHMCKRI5FNBJERFYMS5PK6TAH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5/

reference_id

PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PHVGRKQAGANCSGFI3QMYOCIMS4IFOZA5/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J/

reference_id

PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PU6Y2S5CBN5BWCBDAJFTGIBZLK3S2G3J/

reference_url

http://python.org

reference_id

python.org

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

http://python.org

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QDRDDPDN3VFIYXJIYEABY6USX5EU66AG/

reference_id

QDRDDPDN3VFIYXJIYEABY6USX5EU66AG

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QDRDDPDN3VFIYXJIYEABY6USX5EU66AG/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC/

reference_id

RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDDC2VOX7OQC6OHMYTVD4HLFZIV6PYBC/

reference_url	https://access.redhat.com/errata/RHSA-2024:0256
reference_id	RHSA-2024:0256
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0256

reference_url	https://access.redhat.com/errata/RHSA-2024:0430
reference_id	RHSA-2024:0430
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0430

reference_url	https://access.redhat.com/errata/RHSA-2024:0454
reference_id	RHSA-2024:0454
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0454

reference_url	https://access.redhat.com/errata/RHSA-2024:0466
reference_id	RHSA-2024:0466
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0466

reference_url	https://access.redhat.com/errata/RHSA-2024:0586
reference_id	RHSA-2024:0586
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0586

reference_url	https://access.redhat.com/errata/RHSA-2024:1383
reference_id	RHSA-2024:1383
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1383

reference_url	https://access.redhat.com/errata/RHSA-2024:2292
reference_id	RHSA-2024:2292
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2292

reference_url	https://access.redhat.com/errata/RHSA-2024:2985
reference_id	RHSA-2024:2985
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2985

reference_url	https://access.redhat.com/errata/RHSA-2024:3062
reference_id	RHSA-2024:3062
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3062

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ/

reference_id

SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SINP4OVYNB2AGDYI2GS37EMW3H3F7XPZ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR/

reference_id

SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SOX7BCN6YL7B3RFPEEXPIU5CMTEHJOKR/

reference_url	https://usn.ubuntu.com/7015-1/
reference_id	USN-7015-1
reference_type
scores
url	https://usn.ubuntu.com/7015-1/

reference_url	https://usn.ubuntu.com/7015-3/
reference_id	USN-7015-3
reference_type
scores
url	https://usn.ubuntu.com/7015-3/

reference_url	https://usn.ubuntu.com/7015-4/
reference_id	USN-7015-4
reference_type
scores
url	https://usn.ubuntu.com/7015-4/

reference_url	https://usn.ubuntu.com/7015-7/
reference_id	USN-7015-7
reference_type
scores
url	https://usn.ubuntu.com/7015-7/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP/

reference_id

VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZXC32CJ7TWDPJO6GY2XIQRO7JZX5FLP/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS/

reference_id

XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XWMBD4LNHWEXRI6YVFWJMTJQUL5WOFTS/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YQVY5C5REXWJIORJIL2FIL3ALOEJEF72/

reference_id

YQVY5C5REXWJIORJIL2FIL3ALOEJEF72

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YQVY5C5REXWJIORJIL2FIL3ALOEJEF72/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u5?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u5?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u5%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2023-27043

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dexx-3ssz-nqfg

url VCID-dnv8-yrd6-c7cv

vulnerability_id VCID-dnv8-yrd6-c7cv

summary Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8088.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-8088.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-8088

reference_id

reference_type

scores

value	0.0023
scoring_system	epss
scoring_elements	0.45924
published_at	2026-04-18T12:55:00Z

value	0.0023
scoring_system	epss
scoring_elements	0.4593
published_at	2026-04-16T12:55:00Z

value	0.0023
scoring_system	epss
scoring_elements	0.45876
published_at	2026-04-13T12:55:00Z

value	0.0023
scoring_system	epss
scoring_elements	0.45869
published_at	2026-04-21T12:55:00Z

value	0.0023
scoring_system	epss
scoring_elements	0.459
published_at	2026-04-11T12:55:00Z

value	0.0023
scoring_system	epss
scoring_elements	0.45877
published_at	2026-04-09T12:55:00Z

value	0.0023
scoring_system	epss
scoring_elements	0.45853
published_at	2026-04-02T12:55:00Z

value	0.0023
scoring_system	epss
scoring_elements	0.45881
published_at	2026-04-08T12:55:00Z

value	0.0023
scoring_system	epss
scoring_elements	0.45825
published_at	2026-04-07T12:55:00Z

value	0.0023
scoring_system	epss
scoring_elements	0.45875
published_at	2026-04-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-8088

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8088
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-8088

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/commit/0aa1ee22ab6e204e9d3d0e9dd63ea648ed691ef1

reference_id

0aa1ee22ab6e204e9d3d0e9dd63ea648ed691ef1

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/commit/0aa1ee22ab6e204e9d3d0e9dd63ea648ed691ef1

reference_url

https://github.com/python/cpython/issues/122905

reference_id

122905

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/issues/122905

reference_url

https://github.com/python/cpython/pull/122906

reference_id

122906

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/pull/122906

reference_url

https://github.com/python/cpython/issues/123270

reference_id

123270

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/issues/123270

reference_url

https://github.com/python/cpython/commit/2231286d78d328c2f575e0b05b16fe447d1656d6

reference_id

2231286d78d328c2f575e0b05b16fe447d1656d6

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/commit/2231286d78d328c2f575e0b05b16fe447d1656d6

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2307370
reference_id	2307370
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2307370

reference_url

https://github.com/python/cpython/commit/795f2597a4be988e2bb19b69ff9958e981cb894e

reference_id

795f2597a4be988e2bb19b69ff9958e981cb894e

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/commit/795f2597a4be988e2bb19b69ff9958e981cb894e

reference_url

https://github.com/python/cpython/commit/7bc367e464ce50b956dd232c1dfa1cad4e7fb814

reference_id

7bc367e464ce50b956dd232c1dfa1cad4e7fb814

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/commit/7bc367e464ce50b956dd232c1dfa1cad4e7fb814

reference_url

https://github.com/python/cpython/commit/7e8883a3f04d308302361aeffc73e0e9837f19d4

reference_id

7e8883a3f04d308302361aeffc73e0e9837f19d4

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/commit/7e8883a3f04d308302361aeffc73e0e9837f19d4

reference_url

https://github.com/python/cpython/commit/8c7348939d8a3ecd79d630075f6be1b0c5b41f64

reference_id

8c7348939d8a3ecd79d630075f6be1b0c5b41f64

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/commit/8c7348939d8a3ecd79d630075f6be1b0c5b41f64

reference_url

https://github.com/python/cpython/commit/95b073bddefa6243effa08e131e297c0383e7f6a

reference_id

95b073bddefa6243effa08e131e297c0383e7f6a

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/commit/95b073bddefa6243effa08e131e297c0383e7f6a

reference_url

https://github.com/python/cpython/commit/962055268ed4f2ca1d717bfc8b6385de50a23ab7

reference_id

962055268ed4f2ca1d717bfc8b6385de50a23ab7

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/commit/962055268ed4f2ca1d717bfc8b6385de50a23ab7

reference_url

https://github.com/python/cpython/commit/9cd03263100ddb1657826cc4a71470786cab3932

reference_id

9cd03263100ddb1657826cc4a71470786cab3932

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/commit/9cd03263100ddb1657826cc4a71470786cab3932

reference_url

https://github.com/python/cpython/commit/dcc5182f27c1500006a1ef78e10613bb45788dea

reference_id

dcc5182f27c1500006a1ef78e10613bb45788dea

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/commit/dcc5182f27c1500006a1ef78e10613bb45788dea

reference_url

https://github.com/python/cpython/commit/e0264a61119d551658d9445af38323ba94fc16db

reference_id

e0264a61119d551658d9445af38323ba94fc16db

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/commit/e0264a61119d551658d9445af38323ba94fc16db

reference_url

https://github.com/python/cpython/commit/fc0b8259e693caa8400fa8b6ac1e494e47ea7798

reference_id

fc0b8259e693caa8400fa8b6ac1e494e47ea7798

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://github.com/python/cpython/commit/fc0b8259e693caa8400fa8b6ac1e494e47ea7798

reference_url	https://security.gentoo.org/glsa/202506-07
reference_id	GLSA-202506-07
reference_type
scores
url	https://security.gentoo.org/glsa/202506-07

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/GNFCKVI4TCATKQLALJ5SN4L4CSPSMILU/

reference_id

GNFCKVI4TCATKQLALJ5SN4L4CSPSMILU

reference_type

scores

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:U/RE:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-08-23T17:18:49Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/GNFCKVI4TCATKQLALJ5SN4L4CSPSMILU/

reference_url	https://access.redhat.com/errata/RHSA-2024:5962
reference_id	RHSA-2024:5962
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:5962

reference_url	https://access.redhat.com/errata/RHSA-2024:6163
reference_id	RHSA-2024:6163
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6163

reference_url	https://access.redhat.com/errata/RHSA-2024:6961
reference_id	RHSA-2024:6961
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6961

reference_url	https://access.redhat.com/errata/RHSA-2024:6962
reference_id	RHSA-2024:6962
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6962

reference_url	https://access.redhat.com/errata/RHSA-2024:9190
reference_id	RHSA-2024:9190
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9190

reference_url	https://access.redhat.com/errata/RHSA-2024:9192
reference_id	RHSA-2024:9192
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9192

reference_url	https://access.redhat.com/errata/RHSA-2024:9371
reference_id	RHSA-2024:9371
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9371

reference_url	https://usn.ubuntu.com/7015-1/
reference_id	USN-7015-1
reference_type
scores
url	https://usn.ubuntu.com/7015-1/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u3?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u3?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u3%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-8088

risk_score 3.9

exploitability 0.5

weighted_severity 7.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dnv8-yrd6-c7cv

url VCID-e6sb-bh7v-9ugg

vulnerability_id VCID-e6sb-bh7v-9ugg

summary python: cpython: URL parser allowed square brackets in domain names

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0938.json

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-0938.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-0938

reference_id

reference_type

scores

value	0.01412
scoring_system	epss
scoring_elements	0.80562
published_at	2026-04-21T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81446
published_at	2026-04-07T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81426
published_at	2026-04-02T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81474
published_at	2026-04-08T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81448
published_at	2026-04-04T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81482
published_at	2026-04-13T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81489
published_at	2026-04-12T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.81501
published_at	2026-04-11T12:55:00Z

value	0.01561
scoring_system	epss
scoring_elements	0.8148
published_at	2026-04-09T12:55:00Z

value	0.01728
scoring_system	epss
scoring_elements	0.82481
published_at	2026-04-18T12:55:00Z

value	0.01728
scoring_system	epss
scoring_elements	0.8248
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-0938

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0938
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-0938

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/105704

reference_id

105704

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/issues/105704

reference_url

https://github.com/python/cpython/pull/129418

reference_id

129418

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/pull/129418

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2343237
reference_id	2343237
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2343237

reference_url

https://github.com/python/cpython/commit/526617ed68cde460236c973e5d0a8bad4de896ba

reference_id

526617ed68cde460236c973e5d0a8bad4de896ba

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/commit/526617ed68cde460236c973e5d0a8bad4de896ba

reference_url

https://github.com/python/cpython/commit/90e526ae67b172ed7c6c56e7edad36263b0f9403

reference_id

90e526ae67b172ed7c6c56e7edad36263b0f9403

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/commit/90e526ae67b172ed7c6c56e7edad36263b0f9403

reference_url

https://github.com/python/cpython/commit/a7084f6075c9595ba60119ce8c62f1496f50c568

reference_id

a7084f6075c9595ba60119ce8c62f1496f50c568

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/commit/a7084f6075c9595ba60119ce8c62f1496f50c568

reference_url

https://github.com/python/cpython/commit/b8b4b713c5f8ec0958c7ef8d29d6711889bc94ab

reference_id

b8b4b713c5f8ec0958c7ef8d29d6711889bc94ab

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/commit/b8b4b713c5f8ec0958c7ef8d29d6711889bc94ab

reference_url

https://github.com/python/cpython/commit/d89a5f6a6e65511a5f6e0618c4c30a7aa5aba56a

reference_id

d89a5f6a6e65511a5f6e0618c4c30a7aa5aba56a

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/commit/d89a5f6a6e65511a5f6e0618c4c30a7aa5aba56a

reference_url

https://github.com/python/cpython/commit/ff4e5c25666f63544071a6b075ae8b25c98b7a32

reference_id

ff4e5c25666f63544071a6b075ae8b25c98b7a32

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://github.com/python/cpython/commit/ff4e5c25666f63544071a6b075ae8b25c98b7a32

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB/

reference_id

K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-31T18:50:16Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/K4EUG6EKV6JYFIC24BASYOZS4M5XOQIB/

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url	https://access.redhat.com/errata/RHSA-2025:6977
reference_id	RHSA-2025:6977
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:6977

reference_url	https://access.redhat.com/errata/RHSA-2025:7107
reference_id	RHSA-2025:7107
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7107

reference_url	https://access.redhat.com/errata/RHSA-2025:7109
reference_id	RHSA-2025:7109
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7109

reference_url	https://access.redhat.com/errata/RHSA-2025:8385
reference_id	RHSA-2025:8385
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:8385

reference_url	https://access.redhat.com/errata/RHSA-2026:5588
reference_id	RHSA-2026:5588
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:5588

reference_url	https://usn.ubuntu.com/7280-1/
reference_id	USN-7280-1
reference_type
scores
url	https://usn.ubuntu.com/7280-1/

reference_url	https://usn.ubuntu.com/7280-2/
reference_id	USN-7280-2
reference_type
scores
url	https://usn.ubuntu.com/7280-2/

reference_url	https://usn.ubuntu.com/7280-3/
reference_id	USN-7280-3
reference_type
scores
url	https://usn.ubuntu.com/7280-3/

reference_url	https://usn.ubuntu.com/7348-1/
reference_id	USN-7348-1
reference_type
scores
url	https://usn.ubuntu.com/7348-1/

reference_url	https://usn.ubuntu.com/7348-2/
reference_id	USN-7348-2
reference_type
scores
url	https://usn.ubuntu.com/7348-2/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2025-0938

risk_score 3.0

exploitability 0.5

weighted_severity 6.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e6sb-bh7v-9ugg

url VCID-gxvd-xhmx-2uh9

vulnerability_id VCID-gxvd-xhmx-2uh9

summary python: sensitive information can be obtained via the _asyncio._swap_current_task component.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38898.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-38898.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-38898

reference_id

reference_type

scores

value	0.00382
scoring_system	epss
scoring_elements	0.59561
published_at	2026-04-02T12:55:00Z

value	0.00382
scoring_system	epss
scoring_elements	0.59626
published_at	2026-04-21T12:55:00Z

value	0.00382
scoring_system	epss
scoring_elements	0.59635
published_at	2026-04-16T12:55:00Z

value	0.00382
scoring_system	epss
scoring_elements	0.59642
published_at	2026-04-18T12:55:00Z

value	0.00382
scoring_system	epss
scoring_elements	0.59586
published_at	2026-04-04T12:55:00Z

value	0.00382
scoring_system	epss
scoring_elements	0.59555
published_at	2026-04-07T12:55:00Z

value	0.00382
scoring_system	epss
scoring_elements	0.59607
published_at	2026-04-08T12:55:00Z

value	0.00382
scoring_system	epss
scoring_elements	0.5962
published_at	2026-04-09T12:55:00Z

value	0.00382
scoring_system	epss
scoring_elements	0.59639
published_at	2026-04-11T12:55:00Z

value	0.00382
scoring_system	epss
scoring_elements	0.59622
published_at	2026-04-12T12:55:00Z

value	0.00382
scoring_system	epss
scoring_elements	0.59602
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-38898

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/105987

reference_id

105987

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-08T20:56:48Z/

url

https://github.com/python/cpython/issues/105987

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2233280
reference_id	2233280
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2233280

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2023-38898

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gxvd-xhmx-2uh9

url VCID-h7z2-vc14-nfhq

vulnerability_id VCID-h7z2-vc14-nfhq

summary python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10735.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-10735.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-10735

reference_id

reference_type

scores

value	0.00384
scoring_system	epss
scoring_elements	0.59716
published_at	2026-04-21T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59726
published_at	2026-04-11T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.5971
published_at	2026-04-12T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59691
published_at	2026-04-13T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59724
published_at	2026-04-16T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59731
published_at	2026-04-18T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59693
published_at	2026-04-08T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59707
published_at	2026-04-09T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60314
published_at	2026-04-02T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60339
published_at	2026-04-04T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60307
published_at	2026-04-07T12:55:00Z

value	0.00395
scoring_system	epss
scoring_elements	0.60237
published_at	2026-04-01T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-10735

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-10735

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1834423
reference_id	1834423
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1834423

reference_url	https://access.redhat.com/errata/RHSA-2022:6766
reference_id	RHSA-2022:6766
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:6766

reference_url	https://access.redhat.com/errata/RHSA-2022:7323
reference_id	RHSA-2022:7323
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:7323

reference_url	https://access.redhat.com/errata/RHSA-2023:0833
reference_id	RHSA-2023:0833
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0833

reference_url	https://access.redhat.com/errata/RHSA-2023:2763
reference_id	RHSA-2023:2763
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2763

reference_url	https://access.redhat.com/errata/RHSA-2023:2764
reference_id	RHSA-2023:2764
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2764

reference_url	https://access.redhat.com/errata/RHSA-2024:0430
reference_id	RHSA-2024:0430
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0430

fixed_packages

url	pkg:deb/debian/python3.11@3.11.0~rc2-1?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.0~rc2-1?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.0~rc2-1%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2020-10735

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h7z2-vc14-nfhq

url VCID-hmcw-zcsy-9qcf

vulnerability_id VCID-hmcw-zcsy-9qcf

summary The method "sock_recvfrom_into()" of "asyncio.ProacterEventLoop" (Windows only) was missing a boundary check for the data buffer when using nbytes parameter. This allowed for an out-of-bounds buffer write if data was larger than the buffer size. Non-Windows platforms are not affected.

references

reference_url

https://github.com/python/cpython/commit/1274766d3c29007ab77245a72abbf8dce2a9db4d

reference_id

1274766d3c29007ab77245a72abbf8dce2a9db4d

reference_type

scores

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:15:36Z/

url

https://github.com/python/cpython/commit/1274766d3c29007ab77245a72abbf8dce2a9db4d

reference_url

https://github.com/python/cpython/issues/148808

reference_id

148808

reference_type

scores

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:15:36Z/

url

https://github.com/python/cpython/issues/148808

reference_url

https://github.com/python/cpython/pull/148809

reference_id

148809

reference_type

scores

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:15:36Z/

url

https://github.com/python/cpython/pull/148809

reference_url

https://github.com/python/cpython/commit/27522b7d6e6588f03e61099dd858cd5a9314e2f2

reference_id

27522b7d6e6588f03e61099dd858cd5a9314e2f2

reference_type

scores

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:15:36Z/

url

https://github.com/python/cpython/commit/27522b7d6e6588f03e61099dd858cd5a9314e2f2

reference_url

https://github.com/python/cpython/commit/95633d2aad4721e25e4dfd9f43dfb6e1edcbd741

reference_id

95633d2aad4721e25e4dfd9f43dfb6e1edcbd741

reference_type

scores

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:15:36Z/

url

https://github.com/python/cpython/commit/95633d2aad4721e25e4dfd9f43dfb6e1edcbd741

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/KWTPIQBOOOUNQP7UFSLBI437NJDFLA3F/

reference_id

KWTPIQBOOOUNQP7UFSLBI437NJDFLA3F

reference_type

scores

value	8.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-21T19:15:36Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/KWTPIQBOOOUNQP7UFSLBI437NJDFLA3F/

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2026-3298

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hmcw-zcsy-9qcf

url VCID-hz5k-rky7-nucg

vulnerability_id VCID-hz5k-rky7-nucg

summary Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-41105.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-41105.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-41105

reference_id

reference_type

scores

value	0.00363
scoring_system	epss
scoring_elements	0.58339
published_at	2026-04-02T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58383
published_at	2026-04-21T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58385
published_at	2026-04-08T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58391
published_at	2026-04-09T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58409
published_at	2026-04-11T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58388
published_at	2026-04-12T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58369
published_at	2026-04-13T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58401
published_at	2026-04-16T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58406
published_at	2026-04-18T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58359
published_at	2026-04-04T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58333
published_at	2026-04-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-41105

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/pull/107981

reference_id

107981

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:01:12Z/

url

https://github.com/python/cpython/pull/107981

reference_url

https://github.com/python/cpython/pull/107982

reference_id

107982

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:01:12Z/

url

https://github.com/python/cpython/pull/107982

reference_url

https://github.com/python/cpython/pull/107983

reference_id

107983

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:01:12Z/

url

https://github.com/python/cpython/pull/107983

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2235795
reference_id	2235795
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2235795

reference_url

https://mail.python.org/archives/list/security-announce%40python.org/thread/D6CDW3ZZC5D444YGL3VQUY6D4ECMCQLD/

reference_id

D6CDW3ZZC5D444YGL3VQUY6D4ECMCQLD

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:01:12Z/

url

https://mail.python.org/archives/list/security-announce%40python.org/thread/D6CDW3ZZC5D444YGL3VQUY6D4ECMCQLD/

reference_url	https://security.gentoo.org/glsa/202405-01
reference_id	GLSA-202405-01
reference_type
scores
url	https://security.gentoo.org/glsa/202405-01

reference_url

https://security.netapp.com/advisory/ntap-20231006-0015/

reference_id

ntap-20231006-0015

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-03T14:01:12Z/

url

https://security.netapp.com/advisory/ntap-20231006-0015/

reference_url	https://access.redhat.com/errata/RHSA-2023:6494
reference_id	RHSA-2023:6494
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6494

reference_url	https://access.redhat.com/errata/RHSA-2023:7024
reference_id	RHSA-2023:7024
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7024

reference_url	https://usn.ubuntu.com/6547-1/
reference_id	USN-6547-1
reference_type
scores
url	https://usn.ubuntu.com/6547-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u2?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u2?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u2%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2023-41105

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hz5k-rky7-nucg

url VCID-js5p-py72-2kga

vulnerability_id VCID-js5p-py72-2kga

summary Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0450.json

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0450.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-0450

reference_id

reference_type

scores

value	0.00148
scoring_system	epss
scoring_elements	0.35429
published_at	2026-04-02T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35411
published_at	2026-04-11T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35409
published_at	2026-04-09T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35384
published_at	2026-04-08T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35338
published_at	2026-04-07T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35454
published_at	2026-04-04T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35328
published_at	2026-04-21T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.3538
published_at	2026-04-18T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35392
published_at	2026-04-16T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35352
published_at	2026-04-13T12:55:00Z

value	0.00148
scoring_system	epss
scoring_elements	0.35374
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-0450

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0450
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0450

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070133
reference_id	1070133
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1070133

reference_url

https://github.com/python/cpython/issues/109858

reference_id

109858

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/issues/109858

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2276525
reference_id	2276525
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2276525

reference_url

https://github.com/python/cpython/commit/30fe5d853b56138dbec62432d370a1f99409fc85

reference_id

30fe5d853b56138dbec62432d370a1f99409fc85

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/30fe5d853b56138dbec62432d370a1f99409fc85

reference_url

http://www.openwall.com/lists/oss-security/2024/03/20/5

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

http://www.openwall.com/lists/oss-security/2024/03/20/5

reference_url

https://github.com/python/cpython/commit/66363b9a7b9fe7c99eba3a185b74c5fdbf842eba

reference_id

66363b9a7b9fe7c99eba3a185b74c5fdbf842eba

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/66363b9a7b9fe7c99eba3a185b74c5fdbf842eba

reference_url

https://github.com/python/cpython/commit/70497218351ba44bffc8b571201ecb5652d84675

reference_id

70497218351ba44bffc8b571201ecb5652d84675

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/70497218351ba44bffc8b571201ecb5652d84675

reference_url

https://github.com/python/cpython/commit/a2c59992e9e8d35baba9695eb186ad6c6ff85c51

reference_id

a2c59992e9e8d35baba9695eb186ad6c6ff85c51

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/a2c59992e9e8d35baba9695eb186ad6c6ff85c51

reference_url

https://github.com/python/cpython/commit/a956e510f6336d5ae111ba429a61c3ade30a7549

reference_id

a956e510f6336d5ae111ba429a61c3ade30a7549

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/a956e510f6336d5ae111ba429a61c3ade30a7549

reference_url

https://github.com/python/cpython/commit/d05bac0b74153beb541b88b4fca33bf053990183

reference_id

d05bac0b74153beb541b88b4fca33bf053990183

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/d05bac0b74153beb541b88b4fca33bf053990183

reference_url

https://github.com/python/cpython/commit/fa181fcf2156f703347b03a3b1966ce47be8ab3b

reference_id

fa181fcf2156f703347b03a3b1966ce47be8ab3b

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://github.com/python/cpython/commit/fa181fcf2156f703347b03a3b1966ce47be8ab3b

reference_url	https://security.gentoo.org/glsa/202405-01
reference_id	GLSA-202405-01
reference_type
scores
url	https://security.gentoo.org/glsa/202405-01

reference_url

https://lists.debian.org/debian-lts-announce/2024/03/msg00024.html

reference_id

msg00024.html

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://lists.debian.org/debian-lts-announce/2024/03/msg00024.html

reference_url

https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html

reference_id

msg00025.html

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://lists.debian.org/debian-lts-announce/2024/03/msg00025.html

reference_url	https://access.redhat.com/errata/RHSA-2024:3347
reference_id	RHSA-2024:3347
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3347

reference_url	https://access.redhat.com/errata/RHSA-2024:3391
reference_id	RHSA-2024:3391
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3391

reference_url	https://access.redhat.com/errata/RHSA-2024:3466
reference_id	RHSA-2024:3466
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3466

reference_url	https://access.redhat.com/errata/RHSA-2024:4058
reference_id	RHSA-2024:4058
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4058

reference_url	https://access.redhat.com/errata/RHSA-2024:4078
reference_id	RHSA-2024:4078
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4078

reference_url	https://access.redhat.com/errata/RHSA-2024:4243
reference_id	RHSA-2024:4243
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4243

reference_url	https://access.redhat.com/errata/RHSA-2024:4406
reference_id	RHSA-2024:4406
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:4406

reference_url	https://access.redhat.com/errata/RHSA-2024:9190
reference_id	RHSA-2024:9190
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9190

reference_url	https://access.redhat.com/errata/RHSA-2024:9192
reference_id	RHSA-2024:9192
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9192

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/

reference_id

T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T3IGRX54M7RNCQOXVQO5KQKTGWCOABIM/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/

reference_id

U5VHWS52HGD743C47UMCSAK2A773M2YE

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U5VHWS52HGD743C47UMCSAK2A773M2YE/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/7212-1/
reference_id	USN-7212-1
reference_type
scores
url	https://usn.ubuntu.com/7212-1/

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG/

reference_id

XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/XELNUX2L3IOHBTFU7RQHCY6OUVEWZ2FG/

reference_url

https://www.bamsoftware.com/hacks/zipbomb/

reference_id

zipbomb

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-03-20T14:30:38Z/

url

https://www.bamsoftware.com/hacks/zipbomb/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u2?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u2?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u2%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-0450

risk_score 2.8

exploitability 0.5

weighted_severity 5.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-js5p-py72-2kga

url VCID-q6g1-cjz3-77e4

vulnerability_id VCID-q6g1-cjz3-77e4

summary cpython: Tarfile extracts filtered members when errorlevel=0

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4435.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-4435.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-4435

reference_id

reference_type

scores

value	0.00541
scoring_system	epss
scoring_elements	0.67621
published_at	2026-04-02T12:55:00Z

value	0.00541
scoring_system	epss
scoring_elements	0.67692
published_at	2026-04-21T12:55:00Z

value	0.00541
scoring_system	epss
scoring_elements	0.67642
published_at	2026-04-04T12:55:00Z

value	0.00541
scoring_system	epss
scoring_elements	0.67622
published_at	2026-04-07T12:55:00Z

value	0.00541
scoring_system	epss
scoring_elements	0.67673
published_at	2026-04-08T12:55:00Z

value	0.00541
scoring_system	epss
scoring_elements	0.67688
published_at	2026-04-09T12:55:00Z

value	0.00541
scoring_system	epss
scoring_elements	0.67711
published_at	2026-04-11T12:55:00Z

value	0.00541
scoring_system	epss
scoring_elements	0.67696
published_at	2026-04-12T12:55:00Z

value	0.00541
scoring_system	epss
scoring_elements	0.67663
published_at	2026-04-13T12:55:00Z

value	0.00541
scoring_system	epss
scoring_elements	0.67699
published_at	2026-04-16T12:55:00Z

value	0.00541
scoring_system	epss
scoring_elements	0.67712
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-4435

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/135034

reference_id

135034

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/

url

https://github.com/python/cpython/issues/135034

reference_url

https://github.com/python/cpython/pull/135037

reference_id

135037

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/

url

https://github.com/python/cpython/pull/135037

reference_url

https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da

reference_id

19de092debb3d7e832e5672cc2f7b788d35951da

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/

url

https://github.com/python/cpython/commit/19de092debb3d7e832e5672cc2f7b788d35951da

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2370010
reference_id	2370010
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2370010

reference_url

https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9

reference_id

28463dba112af719df1e8b0391c46787ad756dd9

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/

url

https://github.com/python/cpython/commit/28463dba112af719df1e8b0391c46787ad756dd9

reference_url

https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a

reference_id

3612d8f51741b11f36f8fb0494d79086bac9390a

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/

url

https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a

reference_url

https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_id

4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/

url

https://github.com/python/cpython/commit/4633f3f497b1ff70e4a35b6fe2c907cbe2d4cb2e

reference_url

https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a

reference_id

9c1110ef6652687d7c55f590f909720eddde965a

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/

url

https://github.com/python/cpython/commit/9c1110ef6652687d7c55f590f909720eddde965a

reference_url

https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_id

9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/

url

https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a

reference_url

https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_id

aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/

url

https://github.com/python/cpython/commit/aa9eb5f757ceff461e6e996f12c89e5d9b583b01

reference_url

https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_id

dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/

url

https://github.com/python/cpython/commit/dd8f187d0746da151e0025c51680979ac5b4cfb1

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/

reference_id

MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T13:58:00Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/

reference_url	https://access.redhat.com/errata/RHSA-2025:10026
reference_id	RHSA-2025:10026
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10026

reference_url	https://access.redhat.com/errata/RHSA-2025:10028
reference_id	RHSA-2025:10028
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10028

reference_url	https://access.redhat.com/errata/RHSA-2025:10031
reference_id	RHSA-2025:10031
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10031

reference_url	https://access.redhat.com/errata/RHSA-2025:10128
reference_id	RHSA-2025:10128
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10128

reference_url	https://access.redhat.com/errata/RHSA-2025:10136
reference_id	RHSA-2025:10136
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10136

reference_url	https://access.redhat.com/errata/RHSA-2025:10140
reference_id	RHSA-2025:10140
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10140

reference_url	https://access.redhat.com/errata/RHSA-2025:10148
reference_id	RHSA-2025:10148
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10148

reference_url	https://access.redhat.com/errata/RHSA-2025:10189
reference_id	RHSA-2025:10189
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10189

reference_url	https://access.redhat.com/errata/RHSA-2025:10399
reference_id	RHSA-2025:10399
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10399

reference_url	https://access.redhat.com/errata/RHSA-2025:10484
reference_id	RHSA-2025:10484
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10484

reference_url	https://access.redhat.com/errata/RHSA-2025:10602
reference_id	RHSA-2025:10602
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:10602

reference_url	https://access.redhat.com/errata/RHSA-2025:13267
reference_id	RHSA-2025:13267
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:13267

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url	https://access.redhat.com/errata/RHSA-2025:9918
reference_id	RHSA-2025:9918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:9918

reference_url	https://usn.ubuntu.com/7583-1/
reference_id	USN-7583-1
reference_type
scores
url	https://usn.ubuntu.com/7583-1/

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2025-4435

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q6g1-cjz3-77e4

url VCID-qqh6-evfk-1fgy

vulnerability_id VCID-qqh6-evfk-1fgy

summary Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-45061.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-45061.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-45061

reference_id

reference_type

scores

value	0.00109
scoring_system	epss
scoring_elements	0.29338
published_at	2026-04-02T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29264
published_at	2026-04-08T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.292
published_at	2026-04-07T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29236
published_at	2026-04-16T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29209
published_at	2026-04-13T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29262
published_at	2026-04-12T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29308
published_at	2026-04-11T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29304
published_at	2026-04-09T12:55:00Z

value	0.00109
scoring_system	epss
scoring_elements	0.29387
published_at	2026-04-04T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31524
published_at	2026-04-21T12:55:00Z

value	0.00124
scoring_system	epss
scoring_elements	0.31557
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-45061

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-45061

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2144072
reference_id	2144072
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2144072

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/

reference_id

2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2AOUKI72ACV6CHY2QUFO6VK2DNMVJ2MB/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/

reference_id

35YDIWCUMWTMDBWFRAVENFH6BLB65D6S

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/35YDIWCUMWTMDBWFRAVENFH6BLB65D6S/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/

reference_id

4WBZJNSALFGMPYTINIF57HAAK46U72WQ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4WBZJNSALFGMPYTINIF57HAAK46U72WQ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/

reference_id

63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63FS6VHY4DCS74HBTEINUDOECQ2X6ZCH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/

reference_id

7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/7WQPHKGNXUJC3TC3BDW5RKGROWRJVSFR/

reference_url

https://github.com/python/cpython/issues/98433

reference_id

98433

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://github.com/python/cpython/issues/98433

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/

reference_id

B3YI6JYARWU6GULWOHNUROSACT54XFFS

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B3YI6JYARWU6GULWOHNUROSACT54XFFS/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH/

reference_id

B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4MYQ3IV6NWA4CKSXEHW45CH2YNDHEPH/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR/

reference_id

BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BWJREJHWVRBYDP43YB5WRL3QC7UBA7BR/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/

reference_id

GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GTPVDZDATRQFE6KAT6B4BQIQ4GRHIIIJ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/

reference_id

IN26PWZTYG6IF3APLRXQJBVACQHZUPT2

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IN26PWZTYG6IF3APLRXQJBVACQHZUPT2/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/

reference_id

JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JCDJXNBHWXNYUTOEV4H2HCFSRKV3SYL3/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/

reference_id

JTYVESWVBPD57ZJC35G5722Q6TS37WSB

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JTYVESWVBPD57ZJC35G5722Q6TS37WSB/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/

reference_id

KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KNE4GMD45RGC2HWUAAIGTDHT5VJ2E4O4/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/

reference_id

LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKWAMPURWUV3DCCT4J7VHRF4NT2CFVBR/

reference_url

https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html

reference_id

msg00024.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.debian.org/debian-lts-announce/2023/05/msg00024.html

reference_url

https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html

reference_id

msg00039.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.debian.org/debian-lts-announce/2023/06/msg00039.html

reference_url

https://security.netapp.com/advisory/ntap-20221209-0007/

reference_id

ntap-20221209-0007

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://security.netapp.com/advisory/ntap-20221209-0007/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/

reference_id

O67LRHDTJWH544KXB6KY4HMHQLYDXFPK

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/O67LRHDTJWH544KXB6KY4HMHQLYDXFPK/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/

reference_id

ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORVCQGJCCAVLN4DJDTWGREFCUWXKQRML/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/

reference_id

PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PLQ2BNZVBBAQPV3SPRU24ZD37UYJJS7W/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L/

reference_id

QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QCKD4AFBHXIMHS64ZER2U7QRT33HNE7L/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/

reference_id

QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QLUGZSEAO3MBWGKCUSMKQIRYJZKJCIOB/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/

reference_id

RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RDK3ZZBRYFO47ET3N4BNTKVXN47U6ICY/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/

reference_id

RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RH57BNT4VQERGEJ5SXNXSVMDYP66YD4H/

reference_url	https://access.redhat.com/errata/RHSA-2023:0833
reference_id	RHSA-2023:0833
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0833

reference_url	https://access.redhat.com/errata/RHSA-2023:0953
reference_id	RHSA-2023:0953
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0953

reference_url	https://access.redhat.com/errata/RHSA-2023:2763
reference_id	RHSA-2023:2763
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2763

reference_url	https://access.redhat.com/errata/RHSA-2023:2764
reference_id	RHSA-2023:2764
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2764

reference_url	https://access.redhat.com/errata/RHSA-2023:2860
reference_id	RHSA-2023:2860
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2860

reference_url	https://access.redhat.com/errata/RHSA-2023:6793
reference_id	RHSA-2023:6793
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6793

reference_url	https://access.redhat.com/errata/RHSA-2024:0430
reference_id	RHSA-2024:0430
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0430

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/

reference_id

RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RTN2OOLKYTG34DODUEJGT5MLC2PFGPBA/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/

reference_id

T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3D5TX4TDJPXHXD2QICKTY3OCQC3JARP/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/

reference_id

UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UHVW73QZJMHA4MK7JBT7CXX7XSNYQEGF/

reference_url	https://usn.ubuntu.com/5767-1/
reference_id	USN-5767-1
reference_type
scores
url	https://usn.ubuntu.com/5767-1/

reference_url	https://usn.ubuntu.com/5767-2/
reference_id	USN-5767-2
reference_type
scores
url	https://usn.ubuntu.com/5767-2/

reference_url	https://usn.ubuntu.com/5888-1/
reference_id	USN-5888-1
reference_type
scores
url	https://usn.ubuntu.com/5888-1/

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

reference_url	https://usn.ubuntu.com/7212-1/
reference_id	USN-7212-1
reference_type
scores
url	https://usn.ubuntu.com/7212-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/

reference_id

VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VCMDX6IFKLOA3NXUQEV524L5LHTPI2JI/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/

reference_id

X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X3EJ6J7PXVQOULBQZQGBXCXY6LFF6LZD/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/

reference_id

XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XXZJL3CNAFS5PAIR7K4RL62S3Y7THR7O/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/

reference_id

YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YPNWZKXPKTNHS5FVMN7UQZ2UPCSEFJUK/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/

reference_id

ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-01T14:24:06Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB5YCMIRVX35RUB6XPOWKENCVCJEVDRK/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.1-1?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.1-1?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.1-1%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2022-45061

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qqh6-evfk-1fgy

url VCID-qwhz-912b-8kh5

vulnerability_id VCID-qwhz-912b-8kh5

summary cpython: python: Memory race condition in ssl.SSLContext certificate store methods

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0397.json

reference_id

reference_type

scores

value	5.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-0397.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-0397

reference_id

reference_type

scores

value	0.00384
scoring_system	epss
scoring_elements	0.59701
published_at	2026-04-21T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59633
published_at	2026-04-02T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59658
published_at	2026-04-04T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59628
published_at	2026-04-07T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59679
published_at	2026-04-08T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59692
published_at	2026-04-09T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59712
published_at	2026-04-11T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59695
published_at	2026-04-12T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59677
published_at	2026-04-13T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.5971
published_at	2026-04-16T12:55:00Z

value	0.00384
scoring_system	epss
scoring_elements	0.59717
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-0397

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0397
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0397

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/commit/01c37f1d0714f5822d34063ca7180b595abf589d

reference_id

01c37f1d0714f5822d34063ca7180b595abf589d

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/

url

https://github.com/python/cpython/commit/01c37f1d0714f5822d34063ca7180b595abf589d

reference_url

https://github.com/python/cpython/issues/114572

reference_id

114572

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/

url

https://github.com/python/cpython/issues/114572

reference_url

https://github.com/python/cpython/pull/114573

reference_id

114573

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/

url

https://github.com/python/cpython/pull/114573

reference_url

http://www.openwall.com/lists/oss-security/2024/06/17/2

reference_id

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/

url

http://www.openwall.com/lists/oss-security/2024/06/17/2

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2301891
reference_id	2301891
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2301891

reference_url

https://github.com/python/cpython/commit/29c97287d205bf2f410f4895ebce3f43b5160524

reference_id

29c97287d205bf2f410f4895ebce3f43b5160524

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/

url

https://github.com/python/cpython/commit/29c97287d205bf2f410f4895ebce3f43b5160524

reference_url

https://github.com/python/cpython/commit/37324b421b72b7bc9934e27aba85d48d4773002e

reference_id

37324b421b72b7bc9934e27aba85d48d4773002e

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/

url

https://github.com/python/cpython/commit/37324b421b72b7bc9934e27aba85d48d4773002e

reference_url

https://github.com/python/cpython/commit/542f3272f56f31ed04e74c40635a913fbc12d286

reference_id

542f3272f56f31ed04e74c40635a913fbc12d286

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/

url

https://github.com/python/cpython/commit/542f3272f56f31ed04e74c40635a913fbc12d286

reference_url

https://github.com/python/cpython/commit/b228655c227b2ca298a8ffac44d14ce3d22f6faa

reference_id

b228655c227b2ca298a8ffac44d14ce3d22f6faa

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/

url

https://github.com/python/cpython/commit/b228655c227b2ca298a8ffac44d14ce3d22f6faa

reference_url

https://github.com/python/cpython/commit/bce693111bff906ccf9281c22371331aaff766ab

reference_id

bce693111bff906ccf9281c22371331aaff766ab

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/

url

https://github.com/python/cpython/commit/bce693111bff906ccf9281c22371331aaff766ab

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/BMAK5BCGKYWNJOACVUSLUF6SFGBIM4VP/

reference_id

BMAK5BCGKYWNJOACVUSLUF6SFGBIM4VP

reference_type

scores

value	7.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-06-20T15:52:27Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/BMAK5BCGKYWNJOACVUSLUF6SFGBIM4VP/

reference_url	https://access.redhat.com/errata/RHSA-2024:10983
reference_id	RHSA-2024:10983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10983

reference_url	https://access.redhat.com/errata/RHSA-2024:9190
reference_id	RHSA-2024:9190
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9190

reference_url	https://access.redhat.com/errata/RHSA-2024:9192
reference_id	RHSA-2024:9192
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:9192

reference_url	https://usn.ubuntu.com/6928-1/
reference_id	USN-6928-1
reference_type
scores
url	https://usn.ubuntu.com/6928-1/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u3?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u3?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u3%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-0397

risk_score 3.4

exploitability 0.5

weighted_severity 6.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qwhz-912b-8kh5

url VCID-s5yq-pjhc-fbcm

vulnerability_id VCID-s5yq-pjhc-fbcm

summary python: Default mimetype known files writeable on Windows

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-3220.json

reference_id

reference_type

scores

value	4.6
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-3220.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3220

reference_id

reference_type

scores

value	0.00288
scoring_system	epss
scoring_elements	0.52287
published_at	2026-04-21T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52301
published_at	2026-04-16T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52305
published_at	2026-04-18T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52202
published_at	2026-04-02T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.5223
published_at	2026-04-04T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52194
published_at	2026-04-07T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52248
published_at	2026-04-08T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52243
published_at	2026-04-09T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52294
published_at	2026-04-11T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52277
published_at	2026-04-12T12:55:00Z

value	0.00288
scoring_system	epss
scoring_elements	0.52263
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3220

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2345794
reference_id	2345794
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2345794

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/CDXW34ND2LSAOYAR5N6UNONP4ZBX4D6R/

reference_id

CDXW34ND2LSAOYAR5N6UNONP4ZBX4D6R

reference_type

scores

value	2.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-02-14T16:46:00Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/CDXW34ND2LSAOYAR5N6UNONP4ZBX4D6R/

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-3220

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s5yq-pjhc-fbcm

url VCID-s7qf-hjkq-wkdy

vulnerability_id VCID-s7qf-hjkq-wkdy

summary Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6507.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-6507.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-6507

reference_id

reference_type

scores

value	0.00083
scoring_system	epss
scoring_elements	0.24174
published_at	2026-04-21T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24382
published_at	2026-04-04T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24166
published_at	2026-04-07T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24232
published_at	2026-04-08T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24276
published_at	2026-04-09T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24293
published_at	2026-04-11T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24251
published_at	2026-04-12T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24193
published_at	2026-04-13T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24209
published_at	2026-04-16T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24197
published_at	2026-04-18T12:55:00Z

value	0.00101
scoring_system	epss
scoring_elements	0.27973
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-6507

reference_url

https://github.com/python/cpython/commit/10e9bb13b8dcaa414645b9bd10718d8f7179e82b

reference_id

10e9bb13b8dcaa414645b9bd10718d8f7179e82b

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-31T20:16:20Z/

url

https://github.com/python/cpython/commit/10e9bb13b8dcaa414645b9bd10718d8f7179e82b

reference_url

https://github.com/python/cpython/issues/112334

reference_id

112334

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-31T20:16:20Z/

url

https://github.com/python/cpython/issues/112334

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2293948
reference_id	2293948
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2293948

reference_url

https://github.com/python/cpython/commit/85bbfa8a4bbdbb61a3a84fbd7cb29a4096ab8a06

reference_id

85bbfa8a4bbdbb61a3a84fbd7cb29a4096ab8a06

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-31T20:16:20Z/

url

https://github.com/python/cpython/commit/85bbfa8a4bbdbb61a3a84fbd7cb29a4096ab8a06

reference_url

https://github.com/python/cpython/commit/9fe7655c6ce0b8e9adc229daf681b6d30e6b1610

reference_id

9fe7655c6ce0b8e9adc229daf681b6d30e6b1610

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-31T20:16:20Z/

url

https://github.com/python/cpython/commit/9fe7655c6ce0b8e9adc229daf681b6d30e6b1610

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/AUL7QFHBLILGISS7U63B47AYSSGJJQZD/

reference_id

AUL7QFHBLILGISS7U63B47AYSSGJJQZD

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-01-31T20:16:20Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/AUL7QFHBLILGISS7U63B47AYSSGJJQZD/

reference_url	https://security.gentoo.org/glsa/202405-01
reference_id	GLSA-202405-01
reference_type
scores
url	https://security.gentoo.org/glsa/202405-01

reference_url	https://usn.ubuntu.com/6891-1/
reference_id	USN-6891-1
reference_type
scores
url	https://usn.ubuntu.com/6891-1/

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2023-6507

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s7qf-hjkq-wkdy

url VCID-sbe1-cx8r-aba1

vulnerability_id VCID-sbe1-cx8r-aba1

summary

On Windows a directory returned by tempfile.mkdtemp() would not always have permissions set to restrict reading and writing to the temporary directory by other users, instead usually inheriting the correct permissions from the default location. Alternate configurations or users without a profile directory may not have the intended permissions.

If you’re not using Windows or haven’t changed the temporary directory location then you aren’t affected by this vulnerability. On other platforms the returned directory is consistently readable and writable only by the current user.

This issue was caused by Python not supporting Unix permissions on Windows. The fix adds support for Unix “700” for the mkdir function on Windows which is used by mkdtemp() to ensure the newly created directory has the proper permissions.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-4030

reference_id

reference_type

scores

value	0.00025
scoring_system	epss
scoring_elements	0.06846
published_at	2026-04-09T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06916
published_at	2026-04-21T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06772
published_at	2026-04-18T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.0678
published_at	2026-04-16T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06723
published_at	2026-04-02T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06838
published_at	2026-04-13T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06844
published_at	2026-04-12T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.0685
published_at	2026-04-11T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.0677
published_at	2026-04-04T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06756
published_at	2026-04-07T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.06808
published_at	2026-04-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-4030

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/118486

reference_id

118486

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/issues/118486

reference_url

https://github.com/python/cpython/commit/35c799d79177b962ddace2fa068101465570a29a

reference_id

35c799d79177b962ddace2fa068101465570a29a

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/commit/35c799d79177b962ddace2fa068101465570a29a

reference_url

https://github.com/python/cpython/commit/5130731c9e779b97d00a24f54cdce73ce9975dfd

reference_id

5130731c9e779b97d00a24f54cdce73ce9975dfd

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/commit/5130731c9e779b97d00a24f54cdce73ce9975dfd

reference_url

https://github.com/python/cpython/commit/66f8bb76a15e64a1bb7688b177ed29e26230fdee

reference_id

66f8bb76a15e64a1bb7688b177ed29e26230fdee

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/commit/66f8bb76a15e64a1bb7688b177ed29e26230fdee

reference_url

https://github.com/python/cpython/commit/6d0850c4c8188035643586ab4d8ec2468abd699e

reference_id

6d0850c4c8188035643586ab4d8ec2468abd699e

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/commit/6d0850c4c8188035643586ab4d8ec2468abd699e

reference_url

https://github.com/python/cpython/commit/81939dad77001556c527485d31a2d0f4a759033e

reference_id

81939dad77001556c527485d31a2d0f4a759033e

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/commit/81939dad77001556c527485d31a2d0f4a759033e

reference_url

https://github.com/python/cpython/commit/8ed546679524140d8282175411fd141fe7df070d

reference_id

8ed546679524140d8282175411fd141fe7df070d

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/commit/8ed546679524140d8282175411fd141fe7df070d

reference_url

https://github.com/python/cpython/commit/91e3669e01245185569d09e9e6e11641282971ee

reference_id

91e3669e01245185569d09e9e6e11641282971ee

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/commit/91e3669e01245185569d09e9e6e11641282971ee

reference_url

https://github.com/python/cpython/commit/94591dca510c796c7d40e9b4167ea56f2fdf28ca

reference_id

94591dca510c796c7d40e9b4167ea56f2fdf28ca

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/commit/94591dca510c796c7d40e9b4167ea56f2fdf28ca

reference_url

https://github.com/python/cpython/commit/c8f868dc52f98011d0f9b459b6487920bfb0ac4d

reference_id

c8f868dc52f98011d0f9b459b6487920bfb0ac4d

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/commit/c8f868dc52f98011d0f9b459b6487920bfb0ac4d

reference_url

https://github.com/python/cpython/commit/d86b49411753bf2c83291e3a14ae43fefded2f84

reference_id

d86b49411753bf2c83291e3a14ae43fefded2f84

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/commit/d86b49411753bf2c83291e3a14ae43fefded2f84

reference_url

https://github.com/python/cpython/commit/e1dfa978b1ad210d551385ad8073ec6154f53763

reference_id

e1dfa978b1ad210d551385ad8073ec6154f53763

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/commit/e1dfa978b1ad210d551385ad8073ec6154f53763

reference_url

https://github.com/python/cpython/commit/eb29e2f5905da93333d1ce78bc98b151e763ff46

reference_id

eb29e2f5905da93333d1ce78bc98b151e763ff46

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://github.com/python/cpython/commit/eb29e2f5905da93333d1ce78bc98b151e763ff46

reference_url

https://security.netapp.com/advisory/ntap-20240705-0005/

reference_id

ntap-20240705-0005

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://security.netapp.com/advisory/ntap-20240705-0005/

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/PRGS5OR3N3PNPT4BMV2VAGN5GMUI5636/

reference_id

PRGS5OR3N3PNPT4BMV2VAGN5GMUI5636

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-05-08T15:32:37Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/PRGS5OR3N3PNPT4BMV2VAGN5GMUI5636/

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-4030

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sbe1-cx8r-aba1

url VCID-smck-sdx2-c7du

vulnerability_id VCID-smck-sdx2-c7du

summary python: Improper validation of IPv6 and IPvFuture addresses

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11168.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-11168.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-11168

reference_id

reference_type

scores

value	0.00475
scoring_system	epss
scoring_elements	0.64815
published_at	2026-04-09T12:55:00Z

value	0.00475
scoring_system	epss
scoring_elements	0.64801
published_at	2026-04-08T12:55:00Z

value	0.00475
scoring_system	epss
scoring_elements	0.64751
published_at	2026-04-07T12:55:00Z

value	0.00517
scoring_system	epss
scoring_elements	0.66749
published_at	2026-04-12T12:55:00Z

value	0.00517
scoring_system	epss
scoring_elements	0.6672
published_at	2026-04-13T12:55:00Z

value	0.00517
scoring_system	epss
scoring_elements	0.66762
published_at	2026-04-11T12:55:00Z

value	0.00552
scoring_system	epss
scoring_elements	0.68006
published_at	2026-04-04T12:55:00Z

value	0.00552
scoring_system	epss
scoring_elements	0.67987
published_at	2026-04-02T12:55:00Z

value	0.00602
scoring_system	epss
scoring_elements	0.69534
published_at	2026-04-21T12:55:00Z

value	0.00602
scoring_system	epss
scoring_elements	0.69544
published_at	2026-04-16T12:55:00Z

value	0.00602
scoring_system	epss
scoring_elements	0.69553
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-11168

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11168
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-11168

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/103848

reference_id

103848

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://github.com/python/cpython/issues/103848

reference_url

https://github.com/python/cpython/pull/103849

reference_id

103849

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://github.com/python/cpython/pull/103849

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2325776
reference_id	2325776
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2325776

reference_url

https://github.com/python/cpython/commit/29f348e232e82938ba2165843c448c2b291504c5

reference_id

29f348e232e82938ba2165843c448c2b291504c5

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://github.com/python/cpython/commit/29f348e232e82938ba2165843c448c2b291504c5

reference_url

https://github.com/python/cpython/commit/634ded45545ce8cbd6fd5d49785613dd7fa9b89e

reference_id

634ded45545ce8cbd6fd5d49785613dd7fa9b89e

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://github.com/python/cpython/commit/634ded45545ce8cbd6fd5d49785613dd7fa9b89e

reference_url

https://github.com/python/cpython/commit/b2171a2fd41416cf68afd67460578631d755a550

reference_id

b2171a2fd41416cf68afd67460578631d755a550

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://github.com/python/cpython/commit/b2171a2fd41416cf68afd67460578631d755a550

reference_url

https://github.com/python/cpython/commit/ddca2953191c67a12b1f19d6bca41016c6ae7132

reference_id

ddca2953191c67a12b1f19d6bca41016c6ae7132

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://github.com/python/cpython/commit/ddca2953191c67a12b1f19d6bca41016c6ae7132

reference_url	https://access.redhat.com/errata/RHSA-2024:10779
reference_id	RHSA-2024:10779
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10779

reference_url	https://access.redhat.com/errata/RHSA-2024:10983
reference_id	RHSA-2024:10983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10983

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url	https://usn.ubuntu.com/7218-1/
reference_id	USN-7218-1
reference_type
scores
url	https://usn.ubuntu.com/7218-1/

reference_url	https://usn.ubuntu.com/7280-3/
reference_id	USN-7280-3
reference_type
scores
url	https://usn.ubuntu.com/7280-3/

reference_url	https://usn.ubuntu.com/7348-1/
reference_id	USN-7348-1
reference_type
scores
url	https://usn.ubuntu.com/7348-1/

reference_url	https://usn.ubuntu.com/7488-1/
reference_id	USN-7488-1
reference_type
scores
url	https://usn.ubuntu.com/7488-1/

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T/

reference_id

XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/XPWB6XVZ5G5KGEI63M4AWLIEUF5BPH4T/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u5?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u5?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u5%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-11168

risk_score 2.9

exploitability 0.5

weighted_severity 5.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-smck-sdx2-c7du

url VCID-tbuw-2msj-tqd9

vulnerability_id VCID-tbuw-2msj-tqd9

summary python: Virtual environment (venv) activation scripts don't quote paths

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9287.json

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:H/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-9287.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-9287

reference_id

reference_type

scores

value	0.00062
scoring_system	epss
scoring_elements	0.19545
published_at	2026-04-02T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19591
published_at	2026-04-04T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19864
published_at	2026-04-21T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19835
published_at	2026-04-07T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19915
published_at	2026-04-08T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19969
published_at	2026-04-09T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19987
published_at	2026-04-11T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19944
published_at	2026-04-12T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19885
published_at	2026-04-13T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19862
published_at	2026-04-16T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.19866
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-9287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-9287

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1089117
reference_id	1089117
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1089117

reference_url

https://github.com/python/cpython/issues/124651

reference_id

124651

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/issues/124651

reference_url

https://github.com/python/cpython/pull/124712

reference_id

124712

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/pull/124712

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2321440
reference_id	2321440
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2321440

reference_url

https://github.com/python/cpython/commit/633555735a023d3e4d92ba31da35b1205f9ecbd7

reference_id

633555735a023d3e4d92ba31da35b1205f9ecbd7

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/commit/633555735a023d3e4d92ba31da35b1205f9ecbd7

reference_url

https://github.com/python/cpython/commit/8450b2482586857d689b6658f08de9c8179af7db

reference_id

8450b2482586857d689b6658f08de9c8179af7db

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/commit/8450b2482586857d689b6658f08de9c8179af7db

reference_url

https://github.com/python/cpython/commit/9286ab3a107ea41bd3f3c3682ce2512692bdded8

reference_id

9286ab3a107ea41bd3f3c3682ce2512692bdded8

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/commit/9286ab3a107ea41bd3f3c3682ce2512692bdded8

reference_url

https://github.com/python/cpython/commit/ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97

reference_id

ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/commit/ae961ae94bf19c8f8c7fbea3d1c25cc55ce8ae97

reference_url

https://github.com/python/cpython/commit/d48cc82ed25e26b02eb97c6263d95dcaa1e9111b

reference_id

d48cc82ed25e26b02eb97c6263d95dcaa1e9111b

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/commit/d48cc82ed25e26b02eb97c6263d95dcaa1e9111b

reference_url

https://github.com/python/cpython/commit/e52095a0c1005a87eed2276af7a1f2f66e2b6483

reference_id

e52095a0c1005a87eed2276af7a1f2f66e2b6483

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://github.com/python/cpython/commit/e52095a0c1005a87eed2276af7a1f2f66e2b6483

reference_url	https://access.redhat.com/errata/RHSA-2024:10779
reference_id	RHSA-2024:10779
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10779

reference_url	https://access.redhat.com/errata/RHSA-2024:10978
reference_id	RHSA-2024:10978
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10978

reference_url	https://access.redhat.com/errata/RHSA-2024:10979
reference_id	RHSA-2024:10979
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10979

reference_url	https://access.redhat.com/errata/RHSA-2024:10980
reference_id	RHSA-2024:10980
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10980

reference_url	https://access.redhat.com/errata/RHSA-2024:10983
reference_id	RHSA-2024:10983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10983

reference_url	https://access.redhat.com/errata/RHSA-2024:11024
reference_id	RHSA-2024:11024
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11024

reference_url	https://access.redhat.com/errata/RHSA-2024:11035
reference_id	RHSA-2024:11035
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11035

reference_url	https://access.redhat.com/errata/RHSA-2024:11111
reference_id	RHSA-2024:11111
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11111

reference_url	https://access.redhat.com/errata/RHSA-2025:0280
reference_id	RHSA-2025:0280
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:0280

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/RSPJ2B5JL22FG3TKUJ7D7DQ4N5JRRBZL/

reference_id

RSPJ2B5JL22FG3TKUJ7D7DQ4N5JRRBZL

reference_type

scores

value	5.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/U:Green

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-10-22T17:11:46Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/RSPJ2B5JL22FG3TKUJ7D7DQ4N5JRRBZL/

reference_url	https://usn.ubuntu.com/7116-1/
reference_id	USN-7116-1
reference_type
scores
url	https://usn.ubuntu.com/7116-1/

reference_url	https://usn.ubuntu.com/7348-1/
reference_id	USN-7348-1
reference_type
scores
url	https://usn.ubuntu.com/7348-1/

reference_url	https://usn.ubuntu.com/7488-1/
reference_id	USN-7488-1
reference_type
scores
url	https://usn.ubuntu.com/7488-1/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u5?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u5?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u5%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-9287

risk_score 2.9

exploitability 0.5

weighted_severity 5.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tbuw-2msj-tqd9

url VCID-uvcx-satp-m3db

vulnerability_id VCID-uvcx-satp-m3db

summary python: Unbounded memory buffering in SelectorSocketTransport.writelines()

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-12254.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-12254.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-12254

reference_id

reference_type

scores

value	0.00249
scoring_system	epss
scoring_elements	0.48235
published_at	2026-04-18T12:55:00Z

value	0.00249
scoring_system	epss
scoring_elements	0.4824
published_at	2026-04-16T12:55:00Z

value	0.00249
scoring_system	epss
scoring_elements	0.48188
published_at	2026-04-13T12:55:00Z

value	0.00249
scoring_system	epss
scoring_elements	0.48177
published_at	2026-04-12T12:55:00Z

value	0.00249
scoring_system	epss
scoring_elements	0.48204
published_at	2026-04-11T12:55:00Z

value	0.00249
scoring_system	epss
scoring_elements	0.4818
published_at	2026-04-09T12:55:00Z

value	0.00249
scoring_system	epss
scoring_elements	0.48185
published_at	2026-04-08T12:55:00Z

value	0.00249
scoring_system	epss
scoring_elements	0.48132
published_at	2026-04-07T12:55:00Z

value	0.00249
scoring_system	epss
scoring_elements	0.48161
published_at	2026-04-02T12:55:00Z

value	0.00249
scoring_system	epss
scoring_elements	0.48182
published_at	2026-04-04T12:55:00Z

value	0.00256
scoring_system	epss
scoring_elements	0.49005
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-12254

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1089235
reference_id	1089235
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1089235

reference_url

https://github.com/python/cpython/issues/127655

reference_id

127655

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-06T15:35:11Z/

url

https://github.com/python/cpython/issues/127655

reference_url

https://github.com/python/cpython/pull/127656

reference_id

127656

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-06T15:35:11Z/

url

https://github.com/python/cpython/pull/127656

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2330804
reference_id	2330804
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2330804

reference_url

https://github.com/python/cpython/commit/71e8429ac8e2adc10084ab5ec29a62f4b6671a82

reference_id

71e8429ac8e2adc10084ab5ec29a62f4b6671a82

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-06T15:35:11Z/

url

https://github.com/python/cpython/commit/71e8429ac8e2adc10084ab5ec29a62f4b6671a82

reference_url

https://github.com/python/cpython/commit/9aa0deb2eef2655a1029ba228527b152353135b5

reference_id

9aa0deb2eef2655a1029ba228527b152353135b5

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-06T15:35:11Z/

url

https://github.com/python/cpython/commit/9aa0deb2eef2655a1029ba228527b152353135b5

reference_url

https://github.com/python/cpython/commit/e991ac8f2037d78140e417cc9a9486223eb3e786

reference_id

e991ac8f2037d78140e417cc9a9486223eb3e786

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-06T15:35:11Z/

url

https://github.com/python/cpython/commit/e991ac8f2037d78140e417cc9a9486223eb3e786

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/H4O3UBAOAQQXGT4RE3E4XQYR5XLROORB/

reference_id

H4O3UBAOAQQXGT4RE3E4XQYR5XLROORB

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-06T15:35:11Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/H4O3UBAOAQQXGT4RE3E4XQYR5XLROORB/

reference_url	https://access.redhat.com/errata/RHSA-2024:10978
reference_id	RHSA-2024:10978
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10978

reference_url	https://access.redhat.com/errata/RHSA-2024:10980
reference_id	RHSA-2024:10980
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10980

reference_url	https://access.redhat.com/errata/RHSA-2024:11035
reference_id	RHSA-2024:11035
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:11035

reference_url	https://usn.ubuntu.com/7219-1/
reference_id	USN-7219-1
reference_type
scores
url	https://usn.ubuntu.com/7219-1/

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-12254

risk_score 3.9

exploitability 0.5

weighted_severity 7.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-uvcx-satp-m3db

url VCID-v186-7sv1-ubej

vulnerability_id VCID-v186-7sv1-ubej

summary Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7592.json

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-7592.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-7592

reference_id

reference_type

scores

value	0.00796
scoring_system	epss
scoring_elements	0.73941
published_at	2026-04-02T12:55:00Z

value	0.00796
scoring_system	epss
scoring_elements	0.73966
published_at	2026-04-04T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77224
published_at	2026-04-21T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77147
published_at	2026-04-07T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77179
published_at	2026-04-08T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77188
published_at	2026-04-09T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77215
published_at	2026-04-11T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77195
published_at	2026-04-12T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77191
published_at	2026-04-13T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77231
published_at	2026-04-16T12:55:00Z

value	0.01018
scoring_system	epss
scoring_elements	0.77233
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-7592

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7592
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7592

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/123067

reference_id

123067

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/issues/123067

reference_url

https://github.com/python/cpython/pull/123075

reference_id

123075

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/pull/123075

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2305879
reference_id	2305879
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2305879

reference_url

https://github.com/python/cpython/commit/391e5626e3ee5af267b97e37abc7475732e67621

reference_id

391e5626e3ee5af267b97e37abc7475732e67621

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/391e5626e3ee5af267b97e37abc7475732e67621

reference_url

https://github.com/python/cpython/commit/44e458357fca05ca0ae2658d62c8c595b048b5ef

reference_id

44e458357fca05ca0ae2658d62c8c595b048b5ef

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/44e458357fca05ca0ae2658d62c8c595b048b5ef

reference_url

https://github.com/python/cpython/commit/a77ab24427a18bff817025adb03ca920dc3f1a06

reference_id

a77ab24427a18bff817025adb03ca920dc3f1a06

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/a77ab24427a18bff817025adb03ca920dc3f1a06

reference_url

https://github.com/python/cpython/commit/b2f11ca7667e4d57c71c1c88b255115f16042d9a

reference_id

b2f11ca7667e4d57c71c1c88b255115f16042d9a

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/b2f11ca7667e4d57c71c1c88b255115f16042d9a

reference_url

https://github.com/python/cpython/commit/d4ac921a4b081f7f996a5d2b101684b67ba0ed7f

reference_id

d4ac921a4b081f7f996a5d2b101684b67ba0ed7f

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/d4ac921a4b081f7f996a5d2b101684b67ba0ed7f

reference_url

https://github.com/python/cpython/commit/d662e2db2605515a767f88ad48096b8ac623c774

reference_id

d662e2db2605515a767f88ad48096b8ac623c774

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/d662e2db2605515a767f88ad48096b8ac623c774

reference_url

https://github.com/python/cpython/commit/dcc3eaef98cd94d6cb6cb0f44bd1c903d04f33b1

reference_id

dcc3eaef98cd94d6cb6cb0f44bd1c903d04f33b1

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://github.com/python/cpython/commit/dcc3eaef98cd94d6cb6cb0f44bd1c903d04f33b1

reference_url	https://security.gentoo.org/glsa/202506-07
reference_id	GLSA-202506-07
reference_type
scores
url	https://security.gentoo.org/glsa/202506-07

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/HXJAAAALNUNGCQUS2W7WR6GFIZIHFOOK/

reference_id

HXJAAAALNUNGCQUS2W7WR6GFIZIHFOOK

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-09-03T17:21:02Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/HXJAAAALNUNGCQUS2W7WR6GFIZIHFOOK/

reference_url	https://access.redhat.com/errata/RHSA-2024:10983
reference_id	RHSA-2024:10983
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:10983

reference_url	https://access.redhat.com/errata/RHSA-2025:3631
reference_id	RHSA-2025:3631
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3631

reference_url	https://access.redhat.com/errata/RHSA-2025:3634
reference_id	RHSA-2025:3634
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:3634

reference_url	https://usn.ubuntu.com/7015-1/
reference_id	USN-7015-1
reference_type
scores
url	https://usn.ubuntu.com/7015-1/

reference_url	https://usn.ubuntu.com/7015-2/
reference_id	USN-7015-2
reference_type
scores
url	https://usn.ubuntu.com/7015-2/

fixed_packages

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u5?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u5?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u5%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-7592

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v186-7sv1-ubej

url VCID-v6ry-7xxz-nbeu

vulnerability_id VCID-v6ry-7xxz-nbeu

summary CPython v3.12.0 alpha 7 was discovered to contain a heap use-after-free via the function ascii_decode at /Objects/unicodeobject.c.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-33595

reference_id

reference_type

scores

value	0.00064
scoring_system	epss
scoring_elements	0.20077
published_at	2026-04-02T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25541
published_at	2026-04-04T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25313
published_at	2026-04-07T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25381
published_at	2026-04-08T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25426
published_at	2026-04-09T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25437
published_at	2026-04-11T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25396
published_at	2026-04-12T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25342
published_at	2026-04-13T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25349
published_at	2026-04-16T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.25341
published_at	2026-04-18T12:55:00Z

value	0.00089
scoring_system	epss
scoring_elements	0.2531
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-33595

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2023-33595

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v6ry-7xxz-nbeu

url VCID-ymg5-42xm-7fh9

vulnerability_id VCID-ymg5-42xm-7fh9

summary

The
 “socket” module provides a pure-Python fallback to the 
socket.socketpair() function for platforms that don’t support AF_UNIX, 
such as Windows. This pure-Python implementation uses AF_INET or 
AF_INET6 to create a local connected pair of sockets. The connection 
between the two sockets was not verified before passing the two sockets 
back to the user, which leaves the server socket vulnerable to a 
connection race from a malicious local peer.

Platforms that support AF_UNIX such as Linux and macOS are not affected by this vulnerability. Versions prior to CPython 3.5 are not affected due to the vulnerable API not being included.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-3219

reference_id

reference_type

scores

value	0.00062
scoring_system	epss
scoring_elements	0.19444
published_at	2026-04-04T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19174
published_at	2026-04-21T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19165
published_at	2026-04-18T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19156
published_at	2026-04-16T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19197
published_at	2026-04-13T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19251
published_at	2026-04-12T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19298
published_at	2026-04-11T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19293
published_at	2026-04-09T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19162
published_at	2026-04-07T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19241
published_at	2026-04-08T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19393
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-3219

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/commit/06fa244666ec6335a3b9bf2367e31b42b9a89b20

reference_id

06fa244666ec6335a3b9bf2367e31b42b9a89b20

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/06fa244666ec6335a3b9bf2367e31b42b9a89b20

reference_url

https://github.com/python/cpython/commit/0b65c8bf5367625673eafb92f85046a1b31259f2

reference_id

0b65c8bf5367625673eafb92f85046a1b31259f2

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/0b65c8bf5367625673eafb92f85046a1b31259f2

reference_url

https://github.com/python/cpython/issues/122133

reference_id

122133

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/issues/122133

reference_url

https://github.com/python/cpython/pull/122134

reference_id

122134

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/pull/122134

reference_url

https://github.com/python/cpython/commit/220e31adeaaa8436c9ff234cba1398bc49e2bb6c

reference_id

220e31adeaaa8436c9ff234cba1398bc49e2bb6c

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/220e31adeaaa8436c9ff234cba1398bc49e2bb6c

reference_url

https://github.com/python/cpython/commit/2621a8a40ba4b2c68ca564671b7daa5da80a4508

reference_id

2621a8a40ba4b2c68ca564671b7daa5da80a4508

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/2621a8a40ba4b2c68ca564671b7daa5da80a4508

reference_url

http://www.openwall.com/lists/oss-security/2024/07/29/3

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

http://www.openwall.com/lists/oss-security/2024/07/29/3

reference_url

https://github.com/python/cpython/commit/31302f5fc24eecd693f0c8aaba7c2840b09b594d

reference_id

31302f5fc24eecd693f0c8aaba7c2840b09b594d

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/31302f5fc24eecd693f0c8aaba7c2840b09b594d

reference_url

https://github.com/python/cpython/commit/3f5d9d12c74787fbf3f5891835c85cc15526c86d

reference_id

3f5d9d12c74787fbf3f5891835c85cc15526c86d

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/3f5d9d12c74787fbf3f5891835c85cc15526c86d

reference_url

https://github.com/python/cpython/commit/5df322e91a40909e6904bbdbc0c3a6b6a9eead39

reference_id

5df322e91a40909e6904bbdbc0c3a6b6a9eead39

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/5df322e91a40909e6904bbdbc0c3a6b6a9eead39

reference_url

https://github.com/python/cpython/commit/5f90abaa786f994db3907fc31e2ee00ea2cf0929

reference_id

5f90abaa786f994db3907fc31e2ee00ea2cf0929

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/5f90abaa786f994db3907fc31e2ee00ea2cf0929

reference_url

https://github.com/python/cpython/commit/78df1043dbdce5c989600616f9f87b4ee72944e5

reference_id

78df1043dbdce5c989600616f9f87b4ee72944e5

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/78df1043dbdce5c989600616f9f87b4ee72944e5

reference_url

https://github.com/python/cpython/commit/b252317956b7fc035bb3774ef6a177e227f9fc54

reference_id

b252317956b7fc035bb3774ef6a177e227f9fc54

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/b252317956b7fc035bb3774ef6a177e227f9fc54

reference_url

https://github.com/python/cpython/commit/c21a36112a0028d7ac3cf8f480e0dc88dba5922c

reference_id

c21a36112a0028d7ac3cf8f480e0dc88dba5922c

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/c21a36112a0028d7ac3cf8f480e0dc88dba5922c

reference_url

https://github.com/python/cpython/commit/c5655aa6ad120d2ed7f255bebd6e8b71a9c07dde

reference_id

c5655aa6ad120d2ed7f255bebd6e8b71a9c07dde

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/c5655aa6ad120d2ed7f255bebd6e8b71a9c07dde

reference_url

https://github.com/python/cpython/commit/e319f774f9e766a2b92949444a2d46081df3363a

reference_id

e319f774f9e766a2b92949444a2d46081df3363a

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/e319f774f9e766a2b92949444a2d46081df3363a

reference_url

https://github.com/python/cpython/commit/f071f01b7b7e19d7d6b3a4b0ec62f820ecb14660

reference_id

f071f01b7b7e19d7d6b3a4b0ec62f820ecb14660

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://github.com/python/cpython/commit/f071f01b7b7e19d7d6b3a4b0ec62f820ecb14660

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/WYKDQWIERRE2ICIYMSVRZJO33GSCWU2B/

reference_id

WYKDQWIERRE2ICIYMSVRZJO33GSCWU2B

reference_type

scores

value	5.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-31T18:45:03Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/WYKDQWIERRE2ICIYMSVRZJO33GSCWU2B/

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2024-3219

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ymg5-42xm-7fh9

url VCID-zxzn-25zt-ukct

vulnerability_id VCID-zxzn-25zt-ukct

summary Mitgation of CVE-2026-4519 was incomplete. If the URL contained "%action" the mitigation could be bypassed for certain browser types the "webbrowser.open()" API could have commands injected into the underlying shell. See CVE-2026-4519 for details.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4786.json

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2026-4786.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2026-4786

reference_id

reference_type

scores

value	0.00015
scoring_system	epss
scoring_elements	0.02998
published_at	2026-04-18T12:55:00Z

value	0.00015
scoring_system	epss
scoring_elements	0.0299
published_at	2026-04-16T12:55:00Z

value	0.0002
scoring_system	epss
scoring_elements	0.05347
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2026-4786

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4786
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2026-4786

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/issues/148169

reference_id

148169

reference_type

scores

value	7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/

url

https://github.com/python/cpython/issues/148169

reference_url

https://github.com/python/cpython/pull/148170

reference_id

148170

reference_type

scores

value	7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/

url

https://github.com/python/cpython/pull/148170

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2458049
reference_id	2458049
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2458049

reference_url

https://github.com/python/cpython/commit/c5767a72838a8dda9d6dc5d3558075b055c56bca

reference_id

c5767a72838a8dda9d6dc5d3558075b055c56bca

reference_type

scores

value	7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/

url

https://github.com/python/cpython/commit/c5767a72838a8dda9d6dc5d3558075b055c56bca

reference_url

https://github.com/python/cpython/commit/d22922c8a7958353689dc4763dd72da2dea03fff

reference_id

d22922c8a7958353689dc4763dd72da2dea03fff

reference_type

scores

value	7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/

url

https://github.com/python/cpython/commit/d22922c8a7958353689dc4763dd72da2dea03fff

reference_url

https://github.com/python/cpython/commit/f4654824ae0850ac87227fb270f9057477946769

reference_id

f4654824ae0850ac87227fb270f9057477946769

reference_type

scores

value	7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/

url

https://github.com/python/cpython/commit/f4654824ae0850ac87227fb270f9057477946769

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5/

reference_id

JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5

reference_type

scores

value	7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-04-14T13:43:47Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/JQDUNJVB4AQNTJECSUKOBDU3XCJIPSE5/

fixed_packages

url	pkg:deb/debian/python3.11@0?distro=bookworm
purl	pkg:deb/debian/python3.11@0?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@0%3Fdistro=bookworm

url	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
purl	pkg:deb/debian/python3.11@3.11.2-6%2Bdeb12u6?distro=bookworm
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

aliases CVE-2026-4786

risk_score 3.2

exploitability 0.5

weighted_severity 6.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zxzn-25zt-ukct

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.11@3.11.2-6%252Bdeb12u6%3Fdistro=bookworm

Package Instance