Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:deb/debian/python3.14@3.14.2-1?distro=sid

Type deb

Namespace debian

Name python3.14

Version 3.14.2-1

Qualifiers

distro	sid

Subpath

Is_vulnerable false

Next_non_vulnerable_version 3.14.3-1

Latest_non_vulnerable_version 3.14.4-2

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1uk5-6yqb-dyb5

vulnerability_id VCID-1uk5-6yqb-dyb5

summary cpython: Out-of-memory when loading Plist

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13837.json

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13837.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-13837

reference_id

reference_type

scores

value	0.00036
scoring_system	epss
scoring_elements	0.10652
published_at	2026-04-02T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10668
published_at	2026-04-21T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10713
published_at	2026-04-04T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.1057
published_at	2026-04-07T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10643
published_at	2026-04-08T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10701
published_at	2026-04-09T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10714
published_at	2026-04-11T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10683
published_at	2026-04-12T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10659
published_at	2026-04-13T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10522
published_at	2026-04-16T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10539
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-13837

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13837
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13837

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126782
reference_id	1126782
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126782

reference_url

https://github.com/python/cpython/issues/119342

reference_id

119342

reference_type

scores

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/

url

https://github.com/python/cpython/issues/119342

reference_url

https://github.com/python/cpython/pull/119343

reference_id

119343

reference_type

scores

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/

url

https://github.com/python/cpython/pull/119343

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2418084
reference_id	2418084
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2418084

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/2X5IBCJXRQAZ5PSERLHMSJFBHFR3QM2C/

reference_id

2X5IBCJXRQAZ5PSERLHMSJFBHFR3QM2C

reference_type

scores

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/2X5IBCJXRQAZ5PSERLHMSJFBHFR3QM2C/

reference_url

https://github.com/python/cpython/commit/568342cfc8f002d9a15f30238f26b9d2e0e79036

reference_id

568342cfc8f002d9a15f30238f26b9d2e0e79036

reference_type

scores

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/

url

https://github.com/python/cpython/commit/568342cfc8f002d9a15f30238f26b9d2e0e79036

reference_url

https://github.com/python/cpython/commit/5a8b19677d818fb41ee55f310233772e15aa1a2b

reference_id

5a8b19677d818fb41ee55f310233772e15aa1a2b

reference_type

scores

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/

url

https://github.com/python/cpython/commit/5a8b19677d818fb41ee55f310233772e15aa1a2b

reference_url

https://github.com/python/cpython/commit/694922cf40aa3a28f898b5f5ee08b71b4922df70

reference_id

694922cf40aa3a28f898b5f5ee08b71b4922df70

reference_type

scores

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/

url

https://github.com/python/cpython/commit/694922cf40aa3a28f898b5f5ee08b71b4922df70

reference_url

https://github.com/python/cpython/commit/71fa8eb8233b37f16c88b6e3e583b461b205d1ba

reference_id

71fa8eb8233b37f16c88b6e3e583b461b205d1ba

reference_type

scores

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/

url

https://github.com/python/cpython/commit/71fa8eb8233b37f16c88b6e3e583b461b205d1ba

reference_url

https://github.com/python/cpython/commit/b64441e4852383645af5b435411a6f849dd1b4cb

reference_id

b64441e4852383645af5b435411a6f849dd1b4cb

reference_type

scores

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/

url

https://github.com/python/cpython/commit/b64441e4852383645af5b435411a6f849dd1b4cb

reference_url

https://github.com/python/cpython/commit/cefee7d118a26ef6cd43db59bb9d98ca9a331111

reference_id

cefee7d118a26ef6cd43db59bb9d98ca9a331111

reference_type

scores

value	2.1
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:L/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:23:28Z/

url

https://github.com/python/cpython/commit/cefee7d118a26ef6cd43db59bb9d98ca9a331111

reference_url	https://access.redhat.com/errata/RHSA-2026:7443
reference_id	RHSA-2026:7443
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7443

reference_url	https://access.redhat.com/errata/RHSA-2026:7661
reference_id	RHSA-2026:7661
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7661

reference_url	https://access.redhat.com/errata/RHSA-2026:8822
reference_id	RHSA-2026:8822
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8822

reference_url	https://access.redhat.com/errata/RHSA-2026:8824
reference_id	RHSA-2026:8824
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8824

reference_url	https://usn.ubuntu.com/8018-1/
reference_id	USN-8018-1
reference_type
scores
url	https://usn.ubuntu.com/8018-1/

fixed_packages

url	pkg:deb/debian/python3.14@3.14.2-1?distro=sid
purl	pkg:deb/debian/python3.14@3.14.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.2-1%3Fdistro=sid

url pkg:deb/debian/python3.14@3.14.3-3?distro=sid

purl pkg:deb/debian/python3.14@3.14.3-3?distro=sid

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11ed-tk56-8khn

vulnerability	VCID-1pr1-jkqa-43g6

vulnerability	VCID-9vcx-2fts-gkfw

vulnerability	VCID-gqzt-rh1w-jkfu

vulnerability	VCID-n4au-q9bs-kucb

vulnerability	VCID-q653-8f64-gkbe

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.3-3%3Fdistro=sid

url	pkg:deb/debian/python3.14@3.14.3-5?distro=sid
purl	pkg:deb/debian/python3.14@3.14.3-5?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.3-5%3Fdistro=sid

url	pkg:deb/debian/python3.14@3.14.4-1?distro=sid
purl	pkg:deb/debian/python3.14@3.14.4-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.4-1%3Fdistro=sid

url	pkg:deb/debian/python3.14@3.14.4-2?distro=sid
purl	pkg:deb/debian/python3.14@3.14.4-2?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.4-2%3Fdistro=sid

aliases CVE-2025-13837

risk_score 2.6

exploitability 0.5

weighted_severity 5.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1uk5-6yqb-dyb5

url VCID-8dtv-379a-wqfs

vulnerability_id VCID-8dtv-379a-wqfs

summary cpython: Excessive read buffering DoS in http.client

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13836.json

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-13836.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-13836

reference_id

reference_type

scores

value	0.00196
scoring_system	epss
scoring_elements	0.41585
published_at	2026-04-02T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41518
published_at	2026-04-21T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41613
published_at	2026-04-04T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41539
published_at	2026-04-07T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41589
published_at	2026-04-08T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41599
published_at	2026-04-09T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41621
published_at	2026-04-11T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41587
published_at	2026-04-12T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41574
published_at	2026-04-13T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.4162
published_at	2026-04-16T12:55:00Z

value	0.00196
scoring_system	epss
scoring_elements	0.41594
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-13836

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13836
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13836

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126783
reference_id	1126783
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126783

reference_url

https://github.com/python/cpython/issues/119451

reference_id

119451

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/issues/119451

reference_url

https://github.com/python/cpython/pull/119454

reference_id

119454

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/pull/119454

reference_url

https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628

reference_id

14b1fdb0a94b96f86fc7b86671ea9582b8676628

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/commit/14b1fdb0a94b96f86fc7b86671ea9582b8676628

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2418078
reference_id	2418078
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2418078

reference_url

https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15

reference_id

289f29b0fe38baf2d7cb5854f4bb573cc34a6a15

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/commit/289f29b0fe38baf2d7cb5854f4bb573cc34a6a15

reference_url

https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155

reference_id

4ce27904b597c77d74dd93f2c912676021a99155

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/commit/4ce27904b597c77d74dd93f2c912676021a99155

reference_url

https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5

reference_id

5a4c4a033a4a54481be6870aa1896fad732555b5

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/commit/5a4c4a033a4a54481be6870aa1896fad732555b5

reference_url

https://github.com/python/cpython/commit/5dc101675fd22918facbbe0fecdc821502beaaf0

reference_id

5dc101675fd22918facbbe0fecdc821502beaaf0

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/commit/5dc101675fd22918facbbe0fecdc821502beaaf0

reference_url

https://github.com/python/cpython/commit/afc40bdd3dd71f343fd9016f6d8eebbacbd6587c

reference_id

afc40bdd3dd71f343fd9016f6d8eebbacbd6587c

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://github.com/python/cpython/commit/afc40bdd3dd71f343fd9016f6d8eebbacbd6587c

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/

reference_id

OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-12-01T18:32:37Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/OQ6G7MKRQIS3OAREC3HNG3D2DPOU34XO/

reference_url	https://access.redhat.com/errata/RHSA-2026:1374
reference_id	RHSA-2026:1374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1374

reference_url	https://access.redhat.com/errata/RHSA-2026:1408
reference_id	RHSA-2026:1408
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1408

reference_url	https://access.redhat.com/errata/RHSA-2026:1410
reference_id	RHSA-2026:1410
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1410

reference_url	https://access.redhat.com/errata/RHSA-2026:1736
reference_id	RHSA-2026:1736
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1736

reference_url	https://access.redhat.com/errata/RHSA-2026:1828
reference_id	RHSA-2026:1828
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1828

reference_url	https://access.redhat.com/errata/RHSA-2026:1892
reference_id	RHSA-2026:1892
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1892

reference_url	https://access.redhat.com/errata/RHSA-2026:1893
reference_id	RHSA-2026:1893
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1893

reference_url	https://access.redhat.com/errata/RHSA-2026:1922
reference_id	RHSA-2026:1922
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1922

reference_url	https://access.redhat.com/errata/RHSA-2026:2084
reference_id	RHSA-2026:2084
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2084

reference_url	https://access.redhat.com/errata/RHSA-2026:2233
reference_id	RHSA-2026:2233
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2233

reference_url	https://access.redhat.com/errata/RHSA-2026:2419
reference_id	RHSA-2026:2419
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2419

reference_url	https://access.redhat.com/errata/RHSA-2026:2563
reference_id	RHSA-2026:2563
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2563

reference_url	https://access.redhat.com/errata/RHSA-2026:3897
reference_id	RHSA-2026:3897
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3897

reference_url	https://access.redhat.com/errata/RHSA-2026:3900
reference_id	RHSA-2026:3900
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:3900

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://access.redhat.com/errata/RHSA-2026:7443
reference_id	RHSA-2026:7443
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7443

reference_url	https://access.redhat.com/errata/RHSA-2026:7661
reference_id	RHSA-2026:7661
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7661

reference_url	https://access.redhat.com/errata/RHSA-2026:8746
reference_id	RHSA-2026:8746
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8746

reference_url	https://access.redhat.com/errata/RHSA-2026:8747
reference_id	RHSA-2026:8747
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8747

reference_url	https://access.redhat.com/errata/RHSA-2026:8748
reference_id	RHSA-2026:8748
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8748

reference_url	https://access.redhat.com/errata/RHSA-2026:8822
reference_id	RHSA-2026:8822
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8822

reference_url	https://access.redhat.com/errata/RHSA-2026:8824
reference_id	RHSA-2026:8824
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8824

reference_url	https://usn.ubuntu.com/7951-1/
reference_id	USN-7951-1
reference_type
scores
url	https://usn.ubuntu.com/7951-1/

fixed_packages

url	pkg:deb/debian/python3.14@3.14.2-1?distro=sid
purl	pkg:deb/debian/python3.14@3.14.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.2-1%3Fdistro=sid

url pkg:deb/debian/python3.14@3.14.3-3?distro=sid

purl pkg:deb/debian/python3.14@3.14.3-3?distro=sid

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11ed-tk56-8khn

vulnerability	VCID-1pr1-jkqa-43g6

vulnerability	VCID-9vcx-2fts-gkfw

vulnerability	VCID-gqzt-rh1w-jkfu

vulnerability	VCID-n4au-q9bs-kucb

vulnerability	VCID-q653-8f64-gkbe

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.3-3%3Fdistro=sid

url	pkg:deb/debian/python3.14@3.14.3-5?distro=sid
purl	pkg:deb/debian/python3.14@3.14.3-5?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.3-5%3Fdistro=sid

url	pkg:deb/debian/python3.14@3.14.4-1?distro=sid
purl	pkg:deb/debian/python3.14@3.14.4-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.4-1%3Fdistro=sid

url	pkg:deb/debian/python3.14@3.14.4-2?distro=sid
purl	pkg:deb/debian/python3.14@3.14.4-2?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.4-2%3Fdistro=sid

aliases CVE-2025-13836

risk_score 3.0

exploitability 0.5

weighted_severity 6.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8dtv-379a-wqfs

url VCID-fcsb-dn49-47gy

vulnerability_id VCID-fcsb-dn49-47gy

summary python: Quadratic complexity in os.path.expandvars() with user-controlled template

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6075.json

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-6075.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-6075

reference_id

reference_type

scores

value	0.00021
scoring_system	epss
scoring_elements	0.05701
published_at	2026-04-04T12:55:00Z

value	0.00021
scoring_system	epss
scoring_elements	0.05661
published_at	2026-04-02T12:55:00Z

value	0.00021
scoring_system	epss
scoring_elements	0.0576
published_at	2026-04-09T12:55:00Z

value	0.00021
scoring_system	epss
scoring_elements	0.05734
published_at	2026-04-08T12:55:00Z

value	0.00021
scoring_system	epss
scoring_elements	0.05694
published_at	2026-04-07T12:55:00Z

value	0.0003
scoring_system	epss
scoring_elements	0.08414
published_at	2026-04-18T12:55:00Z

value	0.0003
scoring_system	epss
scoring_elements	0.08574
published_at	2026-04-21T12:55:00Z

value	0.0003
scoring_system	epss
scoring_elements	0.08553
published_at	2026-04-12T12:55:00Z

value	0.0003
scoring_system	epss
scoring_elements	0.08536
published_at	2026-04-13T12:55:00Z

value	0.0003
scoring_system	epss
scoring_elements	0.08429
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-6075

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6075
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-6075

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126777
reference_id	1126777
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126777

reference_url

https://github.com/python/cpython/issues/136065

reference_id

136065

reference_type

scores

value	1.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/

url

https://github.com/python/cpython/issues/136065

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2408891
reference_id	2408891
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2408891

reference_url

https://github.com/python/cpython/commit/2e6150adccaaf5bd95d4c19dfd04a36e0b325d8c

reference_id

2e6150adccaaf5bd95d4c19dfd04a36e0b325d8c

reference_type

scores

value	1.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/

url

https://github.com/python/cpython/commit/2e6150adccaaf5bd95d4c19dfd04a36e0b325d8c

reference_url

https://github.com/python/cpython/commit/5dceb93486176e6b4a6d9754491005113eb23427

reference_id

5dceb93486176e6b4a6d9754491005113eb23427

reference_type

scores

value	1.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/

url

https://github.com/python/cpython/commit/5dceb93486176e6b4a6d9754491005113eb23427

reference_url

https://github.com/python/cpython/commit/631ba3407e3348ccd56ce5160c4fb2c5dc5f4d84

reference_id

631ba3407e3348ccd56ce5160c4fb2c5dc5f4d84

reference_type

scores

value	1.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/

url

https://github.com/python/cpython/commit/631ba3407e3348ccd56ce5160c4fb2c5dc5f4d84

reference_url

https://github.com/python/cpython/commit/892747b4cf0f95ba8beb51c0d0658bfaa381ebca

reference_id

892747b4cf0f95ba8beb51c0d0658bfaa381ebca

reference_type

scores

value	1.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/

url

https://github.com/python/cpython/commit/892747b4cf0f95ba8beb51c0d0658bfaa381ebca

reference_url

https://github.com/python/cpython/commit/9ab89c026aa9611c4b0b67c288b8303a480fe742

reference_id

9ab89c026aa9611c4b0b67c288b8303a480fe742

reference_type

scores

value	1.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/

url

https://github.com/python/cpython/commit/9ab89c026aa9611c4b0b67c288b8303a480fe742

reference_url

https://github.com/python/cpython/commit/c8a5f3435c342964e0a432cc9fb448b7dbecd1ba

reference_id

c8a5f3435c342964e0a432cc9fb448b7dbecd1ba

reference_type

scores

value	1.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/

url

https://github.com/python/cpython/commit/c8a5f3435c342964e0a432cc9fb448b7dbecd1ba

reference_url

https://github.com/python/cpython/commit/f029e8db626ddc6e3a3beea4eff511a71aaceb5c

reference_id

f029e8db626ddc6e3a3beea4eff511a71aaceb5c

reference_type

scores

value	1.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/

url

https://github.com/python/cpython/commit/f029e8db626ddc6e3a3beea4eff511a71aaceb5c

reference_url

https://mail.python.org/archives/list/security-announce@python.org/thread/IUP5QJ6D4KK6ULHOMPC7DPNKRYQTQNLA/

reference_id

IUP5QJ6D4KK6ULHOMPC7DPNKRYQTQNLA

reference_type

scores

value	1.8
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:L/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-10-31T17:54:46Z/

url

https://mail.python.org/archives/list/security-announce@python.org/thread/IUP5QJ6D4KK6ULHOMPC7DPNKRYQTQNLA/

reference_url	https://access.redhat.com/errata/RHSA-2025:23342
reference_id	RHSA-2025:23342
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23342

reference_url	https://access.redhat.com/errata/RHSA-2025:23530
reference_id	RHSA-2025:23530
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23530

reference_url	https://access.redhat.com/errata/RHSA-2026:0414
reference_id	RHSA-2026:0414
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0414

reference_url	https://access.redhat.com/errata/RHSA-2026:0685
reference_id	RHSA-2026:0685
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0685

reference_url	https://access.redhat.com/errata/RHSA-2026:1652
reference_id	RHSA-2026:1652
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1652

reference_url	https://access.redhat.com/errata/RHSA-2026:7443
reference_id	RHSA-2026:7443
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7443

reference_url	https://access.redhat.com/errata/RHSA-2026:7661
reference_id	RHSA-2026:7661
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7661

reference_url	https://access.redhat.com/errata/RHSA-2026:8822
reference_id	RHSA-2026:8822
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8822

reference_url	https://access.redhat.com/errata/RHSA-2026:8824
reference_id	RHSA-2026:8824
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8824

reference_url	https://usn.ubuntu.com/7886-1/
reference_id	USN-7886-1
reference_type
scores
url	https://usn.ubuntu.com/7886-1/

reference_url	https://usn.ubuntu.com/7886-2/
reference_id	USN-7886-2
reference_type
scores
url	https://usn.ubuntu.com/7886-2/

fixed_packages

url	pkg:deb/debian/python3.14@3.14.2-1?distro=sid
purl	pkg:deb/debian/python3.14@3.14.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.2-1%3Fdistro=sid

url pkg:deb/debian/python3.14@3.14.3-3?distro=sid

purl pkg:deb/debian/python3.14@3.14.3-3?distro=sid

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11ed-tk56-8khn

vulnerability	VCID-1pr1-jkqa-43g6

vulnerability	VCID-9vcx-2fts-gkfw

vulnerability	VCID-gqzt-rh1w-jkfu

vulnerability	VCID-n4au-q9bs-kucb

vulnerability	VCID-q653-8f64-gkbe

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.3-3%3Fdistro=sid

url	pkg:deb/debian/python3.14@3.14.3-5?distro=sid
purl	pkg:deb/debian/python3.14@3.14.3-5?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.3-5%3Fdistro=sid

url	pkg:deb/debian/python3.14@3.14.4-1?distro=sid
purl	pkg:deb/debian/python3.14@3.14.4-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.4-1%3Fdistro=sid

url	pkg:deb/debian/python3.14@3.14.4-2?distro=sid
purl	pkg:deb/debian/python3.14@3.14.4-2?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.4-2%3Fdistro=sid

aliases CVE-2025-6075

risk_score 1.8

exploitability 0.5

weighted_severity 3.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fcsb-dn49-47gy

url VCID-nqqc-u8d5-8qf6

vulnerability_id VCID-nqqc-u8d5-8qf6

summary cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12084.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-12084.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-12084

reference_id

reference_type

scores

value	0.00049
scoring_system	epss
scoring_elements	0.15347
published_at	2026-04-02T12:55:00Z

value	0.00058
scoring_system	epss
scoring_elements	0.17965
published_at	2026-04-07T12:55:00Z

value	0.00058
scoring_system	epss
scoring_elements	0.18111
published_at	2026-04-09T12:55:00Z

value	0.00058
scoring_system	epss
scoring_elements	0.1805
published_at	2026-04-08T12:55:00Z

value	0.00058
scoring_system	epss
scoring_elements	0.18263
published_at	2026-04-04T12:55:00Z

value	0.00058
scoring_system	epss
scoring_elements	0.17978
published_at	2026-04-18T12:55:00Z

value	0.00058
scoring_system	epss
scoring_elements	0.17968
published_at	2026-04-16T12:55:00Z

value	0.00058
scoring_system	epss
scoring_elements	0.18025
published_at	2026-04-13T12:55:00Z

value	0.00058
scoring_system	epss
scoring_elements	0.18075
published_at	2026-04-12T12:55:00Z

value	0.00058
scoring_system	epss
scoring_elements	0.18118
published_at	2026-04-11T12:55:00Z

value	0.00176
scoring_system	epss
scoring_elements	0.39039
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-12084

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12084
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-12084

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/python/cpython/commit/027f21e417b26eed4505ac2db101a4352b7c51a0

reference_id

027f21e417b26eed4505ac2db101a4352b7c51a0

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/commit/027f21e417b26eed4505ac2db101a4352b7c51a0

reference_url

https://github.com/python/cpython/commit/08d8e18ad81cd45bc4a27d6da478b51ea49486e4

reference_id

08d8e18ad81cd45bc4a27d6da478b51ea49486e4

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/commit/08d8e18ad81cd45bc4a27d6da478b51ea49486e4

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126784
reference_id	1126784
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126784

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126785
reference_id	1126785
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1126785

reference_url

https://github.com/python/cpython/issues/142145

reference_id

142145

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/issues/142145

reference_url

https://github.com/python/cpython/pull/142146

reference_id

142146

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/pull/142146

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2418655
reference_id	2418655
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2418655

reference_url

https://github.com/python/cpython/commit/27648a1818749ef44c420afe6173af6868715437

reference_id

27648a1818749ef44c420afe6173af6868715437

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/commit/27648a1818749ef44c420afe6173af6868715437

reference_url

https://github.com/python/cpython/commit/41f468786762348960486c166833a218a0a436af

reference_id

41f468786762348960486c166833a218a0a436af

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/commit/41f468786762348960486c166833a218a0a436af

reference_url

https://github.com/python/cpython/commit/57937a8e5e293f0dcba5115f7b7a11b1e0c9a273

reference_id

57937a8e5e293f0dcba5115f7b7a11b1e0c9a273

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/commit/57937a8e5e293f0dcba5115f7b7a11b1e0c9a273

reference_url

https://github.com/python/cpython/commit/8d2d7bb2e754f8649a68ce4116271a4932f76907

reference_id

8d2d7bb2e754f8649a68ce4116271a4932f76907

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/commit/8d2d7bb2e754f8649a68ce4116271a4932f76907

reference_url

https://github.com/python/cpython/commit/9c9dda6625a2a90d2a06c657eee021d6be19842d

reference_id

9c9dda6625a2a90d2a06c657eee021d6be19842d

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/commit/9c9dda6625a2a90d2a06c657eee021d6be19842d

reference_url

https://github.com/python/cpython/commit/a46c10ec9d4050ab67b8a932e0859a2ea60c3cb8

reference_id

a46c10ec9d4050ab67b8a932e0859a2ea60c3cb8

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/commit/a46c10ec9d4050ab67b8a932e0859a2ea60c3cb8

reference_url

https://github.com/python/cpython/commit/a696ba8b4d42fd632afc9bc88ad830a2e4cceed8

reference_id

a696ba8b4d42fd632afc9bc88ad830a2e4cceed8

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/commit/a696ba8b4d42fd632afc9bc88ad830a2e4cceed8

reference_url

https://github.com/python/cpython/commit/c97e87593063d84a2bd9fe7068b30eb44de23dc0

reference_id

c97e87593063d84a2bd9fe7068b30eb44de23dc0

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/commit/c97e87593063d84a2bd9fe7068b30eb44de23dc0

reference_url

https://github.com/python/cpython/commit/ddcd2acd85d891a53e281c773b3093f9db953964

reference_id

ddcd2acd85d891a53e281c773b3093f9db953964

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/commit/ddcd2acd85d891a53e281c773b3093f9db953964

reference_url

https://github.com/python/cpython/commit/e91c11449cad34bac3ea55ee09ca557691d92b53

reference_id

e91c11449cad34bac3ea55ee09ca557691d92b53

reference_type

scores

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-03T19:13:23Z/

url

https://github.com/python/cpython/commit/e91c11449cad34bac3ea55ee09ca557691d92b53

reference_url	https://access.redhat.com/errata/RHSA-2026:0123
reference_id	RHSA-2026:0123
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:0123

reference_url	https://access.redhat.com/errata/RHSA-2026:1374
reference_id	RHSA-2026:1374
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1374

reference_url	https://access.redhat.com/errata/RHSA-2026:1408
reference_id	RHSA-2026:1408
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1408

reference_url	https://access.redhat.com/errata/RHSA-2026:1410
reference_id	RHSA-2026:1410
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1410

reference_url	https://access.redhat.com/errata/RHSA-2026:1478
reference_id	RHSA-2026:1478
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1478

reference_url	https://access.redhat.com/errata/RHSA-2026:1537
reference_id	RHSA-2026:1537
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1537

reference_url	https://access.redhat.com/errata/RHSA-2026:1558
reference_id	RHSA-2026:1558
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1558

reference_url	https://access.redhat.com/errata/RHSA-2026:1582
reference_id	RHSA-2026:1582
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1582

reference_url	https://access.redhat.com/errata/RHSA-2026:1583
reference_id	RHSA-2026:1583
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1583

reference_url	https://access.redhat.com/errata/RHSA-2026:1620
reference_id	RHSA-2026:1620
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1620

reference_url	https://access.redhat.com/errata/RHSA-2026:1631
reference_id	RHSA-2026:1631
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1631

reference_url	https://access.redhat.com/errata/RHSA-2026:1736
reference_id	RHSA-2026:1736
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1736

reference_url	https://access.redhat.com/errata/RHSA-2026:1828
reference_id	RHSA-2026:1828
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1828

reference_url	https://access.redhat.com/errata/RHSA-2026:1892
reference_id	RHSA-2026:1892
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1892

reference_url	https://access.redhat.com/errata/RHSA-2026:1893
reference_id	RHSA-2026:1893
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1893

reference_url	https://access.redhat.com/errata/RHSA-2026:1922
reference_id	RHSA-2026:1922
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1922

reference_url	https://access.redhat.com/errata/RHSA-2026:2084
reference_id	RHSA-2026:2084
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2084

reference_url	https://access.redhat.com/errata/RHSA-2026:2233
reference_id	RHSA-2026:2233
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2233

reference_url	https://access.redhat.com/errata/RHSA-2026:2275
reference_id	RHSA-2026:2275
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2275

reference_url	https://access.redhat.com/errata/RHSA-2026:2276
reference_id	RHSA-2026:2276
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2276

reference_url	https://access.redhat.com/errata/RHSA-2026:2330
reference_id	RHSA-2026:2330
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2330

reference_url	https://access.redhat.com/errata/RHSA-2026:2391
reference_id	RHSA-2026:2391
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2391

reference_url	https://access.redhat.com/errata/RHSA-2026:2392
reference_id	RHSA-2026:2392
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2392

reference_url	https://access.redhat.com/errata/RHSA-2026:2393
reference_id	RHSA-2026:2393
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2393

reference_url	https://access.redhat.com/errata/RHSA-2026:2563
reference_id	RHSA-2026:2563
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2563

reference_url	https://access.redhat.com/errata/RHSA-2026:2713
reference_id	RHSA-2026:2713
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:2713

reference_url	https://access.redhat.com/errata/RHSA-2026:4943
reference_id	RHSA-2026:4943
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:4943

reference_url	https://access.redhat.com/errata/RHSA-2026:7443
reference_id	RHSA-2026:7443
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7443

reference_url	https://access.redhat.com/errata/RHSA-2026:7661
reference_id	RHSA-2026:7661
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7661

reference_url	https://access.redhat.com/errata/RHSA-2026:8822
reference_id	RHSA-2026:8822
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8822

reference_url	https://access.redhat.com/errata/RHSA-2026:8824
reference_id	RHSA-2026:8824
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8824

reference_url	https://usn.ubuntu.com/8018-1/
reference_id	USN-8018-1
reference_type
scores
url	https://usn.ubuntu.com/8018-1/

reference_url	https://usn.ubuntu.com/8018-3/
reference_id	USN-8018-3
reference_type
scores
url	https://usn.ubuntu.com/8018-3/

fixed_packages

url	pkg:deb/debian/python3.14@3.14.2-1?distro=sid
purl	pkg:deb/debian/python3.14@3.14.2-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.2-1%3Fdistro=sid

url pkg:deb/debian/python3.14@3.14.3-3?distro=sid

purl pkg:deb/debian/python3.14@3.14.3-3?distro=sid

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11ed-tk56-8khn

vulnerability	VCID-1pr1-jkqa-43g6

vulnerability	VCID-9vcx-2fts-gkfw

vulnerability	VCID-gqzt-rh1w-jkfu

vulnerability	VCID-n4au-q9bs-kucb

vulnerability	VCID-q653-8f64-gkbe

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.3-3%3Fdistro=sid

url	pkg:deb/debian/python3.14@3.14.3-5?distro=sid
purl	pkg:deb/debian/python3.14@3.14.3-5?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.3-5%3Fdistro=sid

url	pkg:deb/debian/python3.14@3.14.4-1?distro=sid
purl	pkg:deb/debian/python3.14@3.14.4-1?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.4-1%3Fdistro=sid

url	pkg:deb/debian/python3.14@3.14.4-2?distro=sid
purl	pkg:deb/debian/python3.14@3.14.4-2?distro=sid
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.4-2%3Fdistro=sid

aliases CVE-2025-12084

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nqqc-u8d5-8qf6

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/python3.14@3.14.2-1%3Fdistro=sid

Package Instance