| 0 |
| url |
VCID-1hw3-vhwb-nkcd |
| vulnerability_id |
VCID-1hw3-vhwb-nkcd |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-12718 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00692 |
| scoring_system |
epss |
| scoring_elements |
0.71871 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.00692 |
| scoring_system |
epss |
| scoring_elements |
0.71793 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00692 |
| scoring_system |
epss |
| scoring_elements |
0.71811 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00692 |
| scoring_system |
epss |
| scoring_elements |
0.71785 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00692 |
| scoring_system |
epss |
| scoring_elements |
0.71824 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00692 |
| scoring_system |
epss |
| scoring_elements |
0.71835 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00692 |
| scoring_system |
epss |
| scoring_elements |
0.71859 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00692 |
| scoring_system |
epss |
| scoring_elements |
0.71842 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00692 |
| scoring_system |
epss |
| scoring_elements |
0.71825 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00692 |
| scoring_system |
epss |
| scoring_elements |
0.71867 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-12718 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-12718
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1hw3-vhwb-nkcd |
|
| 1 |
| url |
VCID-1uk5-6yqb-dyb5 |
| vulnerability_id |
VCID-1uk5-6yqb-dyb5 |
| summary |
cpython: Out-of-memory when loading Plist |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-13837 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00036 |
| scoring_system |
epss |
| scoring_elements |
0.10652 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00036 |
| scoring_system |
epss |
| scoring_elements |
0.10539 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00036 |
| scoring_system |
epss |
| scoring_elements |
0.10713 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00036 |
| scoring_system |
epss |
| scoring_elements |
0.1057 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00036 |
| scoring_system |
epss |
| scoring_elements |
0.10643 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00036 |
| scoring_system |
epss |
| scoring_elements |
0.10701 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00036 |
| scoring_system |
epss |
| scoring_elements |
0.10714 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00036 |
| scoring_system |
epss |
| scoring_elements |
0.10683 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00036 |
| scoring_system |
epss |
| scoring_elements |
0.10659 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00036 |
| scoring_system |
epss |
| scoring_elements |
0.10522 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-13837 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-13837
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-1uk5-6yqb-dyb5 |
|
| 2 |
| url |
VCID-2czu-wy37-qugf |
| vulnerability_id |
VCID-2czu-wy37-qugf |
| summary |
python: constant-time-defeating optimisations issue in the compare_digest function in Lib/hmac.p |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-48566 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00098 |
| scoring_system |
epss |
| scoring_elements |
0.2714 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00098 |
| scoring_system |
epss |
| scoring_elements |
0.26967 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00098 |
| scoring_system |
epss |
| scoring_elements |
0.27081 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00098 |
| scoring_system |
epss |
| scoring_elements |
0.27085 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00098 |
| scoring_system |
epss |
| scoring_elements |
0.2704 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00098 |
| scoring_system |
epss |
| scoring_elements |
0.26984 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.00098 |
| scoring_system |
epss |
| scoring_elements |
0.26992 |
| published_at |
2026-04-16T12:55:00Z |
|
| 7 |
| value |
0.00098 |
| scoring_system |
epss |
| scoring_elements |
0.27176 |
| published_at |
2026-04-04T12:55:00Z |
|
| 8 |
| value |
0.00098 |
| scoring_system |
epss |
| scoring_elements |
0.26968 |
| published_at |
2026-04-07T12:55:00Z |
|
| 9 |
| value |
0.00098 |
| scoring_system |
epss |
| scoring_elements |
0.27036 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-48566 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
|
| fixed_packages |
|
| aliases |
CVE-2022-48566
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2czu-wy37-qugf |
|
| 3 |
| url |
VCID-2j3t-a3r6-vfg7 |
| vulnerability_id |
VCID-2j3t-a3r6-vfg7 |
| summary |
Multiple vulnerabilities have been found in Python, the worst of
which might allow attackers to access sensitive information. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3426 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23679 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.0008 |
| scoring_system |
epss |
| scoring_elements |
0.23519 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23957 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.2387 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23859 |
| published_at |
2026-04-18T12:55:00Z |
|
| 5 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.2394 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.24042 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23827 |
| published_at |
2026-04-07T12:55:00Z |
|
| 8 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23894 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23913 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3426 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-3426
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2j3t-a3r6-vfg7 |
|
| 4 |
| url |
VCID-2shb-2cvn-dyd2 |
| vulnerability_id |
VCID-2shb-2cvn-dyd2 |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-24329 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01445 |
| scoring_system |
epss |
| scoring_elements |
0.8075 |
| published_at |
2026-04-12T12:55:00Z |
|
| 1 |
| value |
0.01445 |
| scoring_system |
epss |
| scoring_elements |
0.80742 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.01445 |
| scoring_system |
epss |
| scoring_elements |
0.8078 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.01445 |
| scoring_system |
epss |
| scoring_elements |
0.80778 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.0159 |
| scoring_system |
epss |
| scoring_elements |
0.81653 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.0159 |
| scoring_system |
epss |
| scoring_elements |
0.81581 |
| published_at |
2026-04-02T12:55:00Z |
|
| 6 |
| value |
0.0159 |
| scoring_system |
epss |
| scoring_elements |
0.81633 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.0159 |
| scoring_system |
epss |
| scoring_elements |
0.81627 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.0159 |
| scoring_system |
epss |
| scoring_elements |
0.816 |
| published_at |
2026-04-07T12:55:00Z |
|
| 9 |
| value |
0.0159 |
| scoring_system |
epss |
| scoring_elements |
0.81602 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-24329 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
| 54 |
|
| 55 |
|
| 56 |
|
| 57 |
|
| 58 |
|
| 59 |
|
| 60 |
|
| 61 |
|
| 62 |
|
| 63 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-24329
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2shb-2cvn-dyd2 |
|
| 5 |
| url |
VCID-2v5u-2z4w-ffgx |
| vulnerability_id |
VCID-2v5u-2z4w-ffgx |
| summary |
python: incorrect IPv4 and IPv6 private ranges |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-4032 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01127 |
| scoring_system |
epss |
| scoring_elements |
0.7832 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.01127 |
| scoring_system |
epss |
| scoring_elements |
0.78243 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.01127 |
| scoring_system |
epss |
| scoring_elements |
0.78274 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.01127 |
| scoring_system |
epss |
| scoring_elements |
0.78256 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.01127 |
| scoring_system |
epss |
| scoring_elements |
0.78282 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.01127 |
| scoring_system |
epss |
| scoring_elements |
0.78288 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.01127 |
| scoring_system |
epss |
| scoring_elements |
0.78314 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.01127 |
| scoring_system |
epss |
| scoring_elements |
0.78297 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.01127 |
| scoring_system |
epss |
| scoring_elements |
0.78292 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.01127 |
| scoring_system |
epss |
| scoring_elements |
0.78322 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-4032 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-4032
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-2v5u-2z4w-ffgx |
|
| 6 |
| url |
VCID-39e1-7qrc-53av |
| vulnerability_id |
VCID-39e1-7qrc-53av |
| summary |
cpython: IMAP command injection in user-controlled commands |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-15366 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23923 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23796 |
| published_at |
2026-04-16T12:55:00Z |
|
| 2 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23964 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23752 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23823 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.2387 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23885 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23841 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23784 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-15366 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-15366
|
| risk_score |
3.2 |
| exploitability |
0.5 |
| weighted_severity |
6.4 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-39e1-7qrc-53av |
|
| 7 |
| url |
VCID-4afh-28ss-mudf |
| vulnerability_id |
VCID-4afh-28ss-mudf |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-4138 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00273 |
| scoring_system |
epss |
| scoring_elements |
0.50673 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00273 |
| scoring_system |
epss |
| scoring_elements |
0.50756 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00273 |
| scoring_system |
epss |
| scoring_elements |
0.50699 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00273 |
| scoring_system |
epss |
| scoring_elements |
0.50655 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00273 |
| scoring_system |
epss |
| scoring_elements |
0.5071 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00273 |
| scoring_system |
epss |
| scoring_elements |
0.50706 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00273 |
| scoring_system |
epss |
| scoring_elements |
0.50748 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00273 |
| scoring_system |
epss |
| scoring_elements |
0.50725 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00273 |
| scoring_system |
epss |
| scoring_elements |
0.5075 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-4138 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-4138
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4afh-28ss-mudf |
|
| 8 |
| url |
VCID-4gsg-5e6s-63g4 |
| vulnerability_id |
VCID-4gsg-5e6s-63g4 |
| summary |
Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-28861 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01395 |
| scoring_system |
epss |
| scoring_elements |
0.80333 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.01395 |
| scoring_system |
epss |
| scoring_elements |
0.8034 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.01395 |
| scoring_system |
epss |
| scoring_elements |
0.8036 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.01395 |
| scoring_system |
epss |
| scoring_elements |
0.80392 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.01395 |
| scoring_system |
epss |
| scoring_elements |
0.80407 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.01395 |
| scoring_system |
epss |
| scoring_elements |
0.80388 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.01395 |
| scoring_system |
epss |
| scoring_elements |
0.80378 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.01395 |
| scoring_system |
epss |
| scoring_elements |
0.80349 |
| published_at |
2026-04-07T12:55:00Z |
|
| 8 |
| value |
0.01395 |
| scoring_system |
epss |
| scoring_elements |
0.80415 |
| published_at |
2026-04-18T12:55:00Z |
|
| 9 |
| value |
0.01395 |
| scoring_system |
epss |
| scoring_elements |
0.80414 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.01395 |
| scoring_system |
epss |
| scoring_elements |
0.80385 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-28861 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-28861
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4gsg-5e6s-63g4 |
|
| 9 |
| url |
VCID-4pej-k4vs-j3d2 |
| vulnerability_id |
VCID-4pej-k4vs-j3d2 |
| summary |
python: sys.path allowing code to be loaded from arbitrary locations |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-15801 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00617 |
| scoring_system |
epss |
| scoring_elements |
0.69871 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00617 |
| scoring_system |
epss |
| scoring_elements |
0.69883 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00617 |
| scoring_system |
epss |
| scoring_elements |
0.69898 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00617 |
| scoring_system |
epss |
| scoring_elements |
0.69875 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00617 |
| scoring_system |
epss |
| scoring_elements |
0.69922 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00617 |
| scoring_system |
epss |
| scoring_elements |
0.69939 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00617 |
| scoring_system |
epss |
| scoring_elements |
0.69963 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00617 |
| scoring_system |
epss |
| scoring_elements |
0.69947 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00617 |
| scoring_system |
epss |
| scoring_elements |
0.69933 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00617 |
| scoring_system |
epss |
| scoring_elements |
0.69976 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00617 |
| scoring_system |
epss |
| scoring_elements |
0.69987 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00617 |
| scoring_system |
epss |
| scoring_elements |
0.69969 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-15801 |
|
| 2 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-15801
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4pej-k4vs-j3d2 |
|
| 10 |
| url |
VCID-4q79-666d-rygx |
| vulnerability_id |
VCID-4q79-666d-rygx |
| summary |
python: XML External Entity in XML processing plistlib module |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-48565 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.07274 |
| scoring_system |
epss |
| scoring_elements |
0.91625 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.07274 |
| scoring_system |
epss |
| scoring_elements |
0.91673 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.07274 |
| scoring_system |
epss |
| scoring_elements |
0.91631 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.07274 |
| scoring_system |
epss |
| scoring_elements |
0.91639 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.07274 |
| scoring_system |
epss |
| scoring_elements |
0.91651 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.07274 |
| scoring_system |
epss |
| scoring_elements |
0.91657 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.07274 |
| scoring_system |
epss |
| scoring_elements |
0.91661 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.07274 |
| scoring_system |
epss |
| scoring_elements |
0.91663 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.07274 |
| scoring_system |
epss |
| scoring_elements |
0.9166 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.07274 |
| scoring_system |
epss |
| scoring_elements |
0.91681 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-48565 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
|
| fixed_packages |
|
| aliases |
CVE-2022-48565
|
| risk_score |
3.5 |
| exploitability |
0.5 |
| weighted_severity |
7.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4q79-666d-rygx |
|
| 11 |
| url |
VCID-4z89-3tfk-pyge |
| vulnerability_id |
VCID-4z89-3tfk-pyge |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-40217 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00581 |
| scoring_system |
epss |
| scoring_elements |
0.6896 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.00581 |
| scoring_system |
epss |
| scoring_elements |
0.68929 |
| published_at |
2026-04-09T12:55:00Z |
|
| 2 |
| value |
0.00581 |
| scoring_system |
epss |
| scoring_elements |
0.68952 |
| published_at |
2026-04-11T12:55:00Z |
|
| 3 |
| value |
0.00581 |
| scoring_system |
epss |
| scoring_elements |
0.68938 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00581 |
| scoring_system |
epss |
| scoring_elements |
0.68909 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00581 |
| scoring_system |
epss |
| scoring_elements |
0.6895 |
| published_at |
2026-04-16T12:55:00Z |
|
| 6 |
| value |
0.00597 |
| scoring_system |
epss |
| scoring_elements |
0.69341 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00597 |
| scoring_system |
epss |
| scoring_elements |
0.69321 |
| published_at |
2026-04-07T12:55:00Z |
|
| 8 |
| value |
0.00597 |
| scoring_system |
epss |
| scoring_elements |
0.69371 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.00597 |
| scoring_system |
epss |
| scoring_elements |
0.69324 |
| published_at |
2026-04-02T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-40217 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-40217
|
| risk_score |
3.9 |
| exploitability |
0.5 |
| weighted_severity |
7.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-4z89-3tfk-pyge |
|
| 12 |
| url |
VCID-5maz-1h1k-3qfj |
| vulnerability_id |
VCID-5maz-1h1k-3qfj |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-4516 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00209 |
| scoring_system |
epss |
| scoring_elements |
0.43354 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00209 |
| scoring_system |
epss |
| scoring_elements |
0.43407 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00209 |
| scoring_system |
epss |
| scoring_elements |
0.43381 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00209 |
| scoring_system |
epss |
| scoring_elements |
0.43319 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00209 |
| scoring_system |
epss |
| scoring_elements |
0.43371 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00209 |
| scoring_system |
epss |
| scoring_elements |
0.43386 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00209 |
| scoring_system |
epss |
| scoring_elements |
0.43406 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00209 |
| scoring_system |
epss |
| scoring_elements |
0.43374 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00209 |
| scoring_system |
epss |
| scoring_elements |
0.43359 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00209 |
| scoring_system |
epss |
| scoring_elements |
0.43418 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-4516 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-4516
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-5maz-1h1k-3qfj |
|
| 13 |
| url |
VCID-757r-fs6p-qqdd |
| vulnerability_id |
VCID-757r-fs6p-qqdd |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-4517 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00303 |
| scoring_system |
epss |
| scoring_elements |
0.53579 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00303 |
| scoring_system |
epss |
| scoring_elements |
0.53606 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.00303 |
| scoring_system |
epss |
| scoring_elements |
0.53622 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00303 |
| scoring_system |
epss |
| scoring_elements |
0.53625 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00303 |
| scoring_system |
epss |
| scoring_elements |
0.53576 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.00303 |
| scoring_system |
epss |
| scoring_elements |
0.53671 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00403 |
| scoring_system |
epss |
| scoring_elements |
0.60923 |
| published_at |
2026-04-18T12:55:00Z |
|
| 7 |
| value |
0.00403 |
| scoring_system |
epss |
| scoring_elements |
0.60895 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00403 |
| scoring_system |
epss |
| scoring_elements |
0.60876 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00403 |
| scoring_system |
epss |
| scoring_elements |
0.60918 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-4517 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-4517
|
| risk_score |
4.2 |
| exploitability |
0.5 |
| weighted_severity |
8.5 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-757r-fs6p-qqdd |
|
| 14 |
| url |
VCID-7ka5-7jrn-dber |
| vulnerability_id |
VCID-7ka5-7jrn-dber |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-6597 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23141 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23033 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23185 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.22974 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23048 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23101 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23121 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23083 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23028 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00077 |
| scoring_system |
epss |
| scoring_elements |
0.23041 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-6597 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-6597
|
| risk_score |
3.5 |
| exploitability |
0.5 |
| weighted_severity |
7.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7ka5-7jrn-dber |
|
| 15 |
| url |
VCID-7nj2-94zp-d3bp |
| vulnerability_id |
VCID-7nj2-94zp-d3bp |
| summary |
python: DoS when processing malformed Apple Property List files in binary format |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-48564 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00099 |
| scoring_system |
epss |
| scoring_elements |
0.27213 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00099 |
| scoring_system |
epss |
| scoring_elements |
0.2725 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.00099 |
| scoring_system |
epss |
| scoring_elements |
0.27044 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.00099 |
| scoring_system |
epss |
| scoring_elements |
0.27113 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00099 |
| scoring_system |
epss |
| scoring_elements |
0.27159 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00099 |
| scoring_system |
epss |
| scoring_elements |
0.27165 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00099 |
| scoring_system |
epss |
| scoring_elements |
0.27121 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00099 |
| scoring_system |
epss |
| scoring_elements |
0.27064 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00099 |
| scoring_system |
epss |
| scoring_elements |
0.27072 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00099 |
| scoring_system |
epss |
| scoring_elements |
0.27046 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-48564 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
|
| aliases |
CVE-2022-48564
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7nj2-94zp-d3bp |
|
| 16 |
| url |
VCID-7s7y-9bw5-m3ep |
| vulnerability_id |
VCID-7s7y-9bw5-m3ep |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-6232 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.03175 |
| scoring_system |
epss |
| scoring_elements |
0.86908 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.03175 |
| scoring_system |
epss |
| scoring_elements |
0.86927 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.04022 |
| scoring_system |
epss |
| scoring_elements |
0.8848 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.04022 |
| scoring_system |
epss |
| scoring_elements |
0.88442 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.04022 |
| scoring_system |
epss |
| scoring_elements |
0.88461 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.04022 |
| scoring_system |
epss |
| scoring_elements |
0.88467 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.04022 |
| scoring_system |
epss |
| scoring_elements |
0.88477 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.04022 |
| scoring_system |
epss |
| scoring_elements |
0.8847 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.04022 |
| scoring_system |
epss |
| scoring_elements |
0.88469 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.04022 |
| scoring_system |
epss |
| scoring_elements |
0.88483 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-6232 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-6232
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-7s7y-9bw5-m3ep |
|
| 17 |
| url |
VCID-8a7h-5rn5-gubx |
| vulnerability_id |
VCID-8a7h-5rn5-gubx |
| summary |
A vulnerability has been discovered in GNAT Ada Suite which can lead to remote code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-27619 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0063 |
| scoring_system |
epss |
| scoring_elements |
0.70306 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.0063 |
| scoring_system |
epss |
| scoring_elements |
0.70316 |
| published_at |
2026-04-16T12:55:00Z |
|
| 2 |
| value |
0.0063 |
| scoring_system |
epss |
| scoring_elements |
0.70325 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.0063 |
| scoring_system |
epss |
| scoring_elements |
0.70224 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.0063 |
| scoring_system |
epss |
| scoring_elements |
0.7024 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.0063 |
| scoring_system |
epss |
| scoring_elements |
0.70217 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.0063 |
| scoring_system |
epss |
| scoring_elements |
0.70264 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.0063 |
| scoring_system |
epss |
| scoring_elements |
0.70279 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.0063 |
| scoring_system |
epss |
| scoring_elements |
0.70302 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.0063 |
| scoring_system |
epss |
| scoring_elements |
0.70288 |
| published_at |
2026-04-12T12:55:00Z |
|
| 10 |
| value |
0.0063 |
| scoring_system |
epss |
| scoring_elements |
0.70275 |
| published_at |
2026-04-13T12:55:00Z |
|
| 11 |
| value |
0.00686 |
| scoring_system |
epss |
| scoring_elements |
0.7165 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-27619 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-27619
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8a7h-5rn5-gubx |
|
| 18 |
| url |
VCID-8b19-pezx-6bcd |
| vulnerability_id |
VCID-8b19-pezx-6bcd |
| summary |
cpython: wsgiref.headers.Headers allows header newline injection in Python |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-0865 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00132 |
| scoring_system |
epss |
| scoring_elements |
0.32822 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00132 |
| scoring_system |
epss |
| scoring_elements |
0.32709 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00132 |
| scoring_system |
epss |
| scoring_elements |
0.32731 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00132 |
| scoring_system |
epss |
| scoring_elements |
0.32692 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00132 |
| scoring_system |
epss |
| scoring_elements |
0.32719 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00132 |
| scoring_system |
epss |
| scoring_elements |
0.32755 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00132 |
| scoring_system |
epss |
| scoring_elements |
0.32753 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00132 |
| scoring_system |
epss |
| scoring_elements |
0.32679 |
| published_at |
2026-04-07T12:55:00Z |
|
| 8 |
| value |
0.00132 |
| scoring_system |
epss |
| scoring_elements |
0.32727 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.00132 |
| scoring_system |
epss |
| scoring_elements |
0.32858 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-0865 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-0865
|
| risk_score |
2.6 |
| exploitability |
0.5 |
| weighted_severity |
5.3 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8b19-pezx-6bcd |
|
| 19 |
| url |
VCID-8dtv-379a-wqfs |
| vulnerability_id |
VCID-8dtv-379a-wqfs |
| summary |
cpython: Excessive read buffering DoS in http.client |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-13836 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41585 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41594 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41613 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41539 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41589 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41599 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41621 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41587 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.41574 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00196 |
| scoring_system |
epss |
| scoring_elements |
0.4162 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-13836 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-13836
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
6.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8dtv-379a-wqfs |
|
| 20 |
| url |
VCID-8zdt-4q7m-t7ht |
| vulnerability_id |
VCID-8zdt-4q7m-t7ht |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-4330 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01012 |
| scoring_system |
epss |
| scoring_elements |
0.77068 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.01012 |
| scoring_system |
epss |
| scoring_elements |
0.77166 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.01012 |
| scoring_system |
epss |
| scoring_elements |
0.77097 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.01012 |
| scoring_system |
epss |
| scoring_elements |
0.7708 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.01012 |
| scoring_system |
epss |
| scoring_elements |
0.77112 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.01012 |
| scoring_system |
epss |
| scoring_elements |
0.77122 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.01012 |
| scoring_system |
epss |
| scoring_elements |
0.77149 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.01012 |
| scoring_system |
epss |
| scoring_elements |
0.77128 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.01012 |
| scoring_system |
epss |
| scoring_elements |
0.77123 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.01012 |
| scoring_system |
epss |
| scoring_elements |
0.77164 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-4330 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-4330
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-8zdt-4q7m-t7ht |
|
| 21 |
| url |
VCID-94n7-6q4s-3udv |
| vulnerability_id |
VCID-94n7-6q4s-3udv |
| summary |
cpython: Header injection via newlines in data URL mediatype in Python |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-15282 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13681 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13472 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13742 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13544 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13624 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13676 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13646 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13609 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13561 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13476 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-15282 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-15282
|
| risk_score |
2.7 |
| exploitability |
0.5 |
| weighted_severity |
5.4 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-94n7-6q4s-3udv |
|
| 22 |
| url |
VCID-9nvp-aus1-9yed |
| vulnerability_id |
VCID-9nvp-aus1-9yed |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-6923 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46924 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.4685 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46868 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.4687 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46893 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46866 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46873 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.00238 |
| scoring_system |
epss |
| scoring_elements |
0.46929 |
| published_at |
2026-04-16T12:55:00Z |
|
| 8 |
| value |
0.00322 |
| scoring_system |
epss |
| scoring_elements |
0.55326 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.00322 |
| scoring_system |
epss |
| scoring_elements |
0.55276 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-6923 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-6923
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
6.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9nvp-aus1-9yed |
|
| 23 |
| url |
VCID-9sms-mhht-n3aq |
| vulnerability_id |
VCID-9sms-mhht-n3aq |
| summary |
python: Mishandling of comma during folding and unicode-encoding of email headers |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-1795 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00593 |
| scoring_system |
epss |
| scoring_elements |
0.6923 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.00593 |
| scoring_system |
epss |
| scoring_elements |
0.6921 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00593 |
| scoring_system |
epss |
| scoring_elements |
0.69212 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.00753 |
| scoring_system |
epss |
| scoring_elements |
0.73251 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.00753 |
| scoring_system |
epss |
| scoring_elements |
0.73224 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00753 |
| scoring_system |
epss |
| scoring_elements |
0.73205 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00753 |
| scoring_system |
epss |
| scoring_elements |
0.73199 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.00753 |
| scoring_system |
epss |
| scoring_elements |
0.73242 |
| published_at |
2026-04-16T12:55:00Z |
|
| 8 |
| value |
0.00791 |
| scoring_system |
epss |
| scoring_elements |
0.73886 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00873 |
| scoring_system |
epss |
| scoring_elements |
0.75243 |
| published_at |
2026-04-08T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-1795 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-1795
|
| risk_score |
1.4 |
| exploitability |
0.5 |
| weighted_severity |
2.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-9sms-mhht-n3aq |
|
| 24 |
| url |
VCID-a8mv-mr3q-vygz |
| vulnerability_id |
VCID-a8mv-mr3q-vygz |
| summary |
Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-42919 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09956 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.0998 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.10002 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.10042 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.10026 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09978 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.10004 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00034 |
| scoring_system |
epss |
| scoring_elements |
0.09902 |
| published_at |
2026-04-07T12:55:00Z |
|
| 8 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11444 |
| published_at |
2026-04-18T12:55:00Z |
|
| 9 |
| value |
0.00038 |
| scoring_system |
epss |
| scoring_elements |
0.11443 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-42919 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
|
| fixed_packages |
|
| aliases |
CVE-2022-42919
|
| risk_score |
3.5 |
| exploitability |
0.5 |
| weighted_severity |
7.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-a8mv-mr3q-vygz |
|
| 25 |
| url |
VCID-bn83-d2qp-9bfy |
| vulnerability_id |
VCID-bn83-d2qp-9bfy |
| summary |
cpython: Missing character filtering in Python |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-11468 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00039 |
| scoring_system |
epss |
| scoring_elements |
0.11821 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00039 |
| scoring_system |
epss |
| scoring_elements |
0.11595 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00039 |
| scoring_system |
epss |
| scoring_elements |
0.11863 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00039 |
| scoring_system |
epss |
| scoring_elements |
0.11649 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00039 |
| scoring_system |
epss |
| scoring_elements |
0.11734 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00039 |
| scoring_system |
epss |
| scoring_elements |
0.11787 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00039 |
| scoring_system |
epss |
| scoring_elements |
0.11797 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00039 |
| scoring_system |
epss |
| scoring_elements |
0.11759 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00039 |
| scoring_system |
epss |
| scoring_elements |
0.11733 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00039 |
| scoring_system |
epss |
| scoring_elements |
0.11597 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-11468 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-11468
|
| risk_score |
2.5 |
| exploitability |
0.5 |
| weighted_severity |
5.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bn83-d2qp-9bfy |
|
| 26 |
| url |
VCID-bqp2-x383-xqfh |
| vulnerability_id |
VCID-bqp2-x383-xqfh |
| summary |
Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2015-20107 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00905 |
| scoring_system |
epss |
| scoring_elements |
0.75672 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00905 |
| scoring_system |
epss |
| scoring_elements |
0.75675 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00905 |
| scoring_system |
epss |
| scoring_elements |
0.75706 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00905 |
| scoring_system |
epss |
| scoring_elements |
0.75685 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00905 |
| scoring_system |
epss |
| scoring_elements |
0.75719 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00905 |
| scoring_system |
epss |
| scoring_elements |
0.7573 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00905 |
| scoring_system |
epss |
| scoring_elements |
0.75754 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00905 |
| scoring_system |
epss |
| scoring_elements |
0.75735 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00905 |
| scoring_system |
epss |
| scoring_elements |
0.75729 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00905 |
| scoring_system |
epss |
| scoring_elements |
0.75767 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.00905 |
| scoring_system |
epss |
| scoring_elements |
0.7577 |
| published_at |
2026-04-18T12:55:00Z |
|
| 11 |
| value |
0.00905 |
| scoring_system |
epss |
| scoring_elements |
0.75755 |
| published_at |
2026-04-21T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2015-20107 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
|
| fixed_packages |
|
| aliases |
CVE-2015-20107
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-bqp2-x383-xqfh |
|
| 27 |
| url |
VCID-ct6h-d1eh-7bgj |
| vulnerability_id |
VCID-ct6h-d1eh-7bgj |
| summary |
python: urllib: Regular expression DoS in AbstractBasicAuthHandler |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3733 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00666 |
| scoring_system |
epss |
| scoring_elements |
0.71216 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.00666 |
| scoring_system |
epss |
| scoring_elements |
0.71189 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.00666 |
| scoring_system |
epss |
| scoring_elements |
0.71198 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.0076 |
| scoring_system |
epss |
| scoring_elements |
0.73361 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.0076 |
| scoring_system |
epss |
| scoring_elements |
0.73341 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.0076 |
| scoring_system |
epss |
| scoring_elements |
0.73333 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.0076 |
| scoring_system |
epss |
| scoring_elements |
0.73376 |
| published_at |
2026-04-16T12:55:00Z |
|
| 7 |
| value |
0.0076 |
| scoring_system |
epss |
| scoring_elements |
0.73383 |
| published_at |
2026-04-18T12:55:00Z |
|
| 8 |
| value |
0.0076 |
| scoring_system |
epss |
| scoring_elements |
0.73288 |
| published_at |
2026-04-07T12:55:00Z |
|
| 9 |
| value |
0.0076 |
| scoring_system |
epss |
| scoring_elements |
0.73324 |
| published_at |
2026-04-08T12:55:00Z |
|
| 10 |
| value |
0.0076 |
| scoring_system |
epss |
| scoring_elements |
0.73337 |
| published_at |
2026-04-09T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3733 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-3733
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ct6h-d1eh-7bgj |
|
| 28 |
| url |
VCID-dexx-3ssz-nqfg |
| vulnerability_id |
VCID-dexx-3ssz-nqfg |
| summary |
python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-27043 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00175 |
| scoring_system |
epss |
| scoring_elements |
0.39103 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.00175 |
| scoring_system |
epss |
| scoring_elements |
0.39083 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00175 |
| scoring_system |
epss |
| scoring_elements |
0.39069 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00175 |
| scoring_system |
epss |
| scoring_elements |
0.39099 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00175 |
| scoring_system |
epss |
| scoring_elements |
0.39044 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00175 |
| scoring_system |
epss |
| scoring_elements |
0.39064 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00175 |
| scoring_system |
epss |
| scoring_elements |
0.39102 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00175 |
| scoring_system |
epss |
| scoring_elements |
0.39089 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00175 |
| scoring_system |
epss |
| scoring_elements |
0.39074 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.00175 |
| scoring_system |
epss |
| scoring_elements |
0.39021 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-27043 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
| reference_url |
http://python.org |
| reference_id |
python.org |
| reference_type |
|
| scores |
| 0 |
| value |
5.3 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2025-12-17T21:27:39Z/ |
|
|
| url |
http://python.org |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-27043
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dexx-3ssz-nqfg |
|
| 29 |
| url |
VCID-dkxn-j9dr-sqbp |
| vulnerability_id |
VCID-dkxn-j9dr-sqbp |
| summary |
Multiple vulnerabilities have been found in Python, the worst of
which could result in the arbitrary execution of code. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3177 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21958 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21971 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21873 |
| published_at |
2026-04-13T12:55:00Z |
|
| 3 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21882 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.2193 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21827 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21902 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00072 |
| scoring_system |
epss |
| scoring_elements |
0.21875 |
| published_at |
2026-04-16T12:55:00Z |
|
| 8 |
| value |
0.00074 |
| scoring_system |
epss |
| scoring_elements |
0.22589 |
| published_at |
2026-04-02T12:55:00Z |
|
| 9 |
| value |
0.00074 |
| scoring_system |
epss |
| scoring_elements |
0.22421 |
| published_at |
2026-04-01T12:55:00Z |
|
| 10 |
| value |
0.00074 |
| scoring_system |
epss |
| scoring_elements |
0.22631 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3177 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
| reference_url |
https://bugs.python.org/issue42938 |
| reference_id |
issue42938 |
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
Track* |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-12-18T15:03:29Z/ |
|
|
| url |
https://bugs.python.org/issue42938 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-3177
|
| risk_score |
4.4 |
| exploitability |
0.5 |
| weighted_severity |
8.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dkxn-j9dr-sqbp |
|
| 30 |
| url |
VCID-dnv8-yrd6-c7cv |
| vulnerability_id |
VCID-dnv8-yrd6-c7cv |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-8088 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45924 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.4593 |
| published_at |
2026-04-16T12:55:00Z |
|
| 2 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45876 |
| published_at |
2026-04-13T12:55:00Z |
|
| 3 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45869 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.459 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45877 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45853 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45881 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45825 |
| published_at |
2026-04-07T12:55:00Z |
|
| 9 |
| value |
0.0023 |
| scoring_system |
epss |
| scoring_elements |
0.45875 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-8088 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-8088
|
| risk_score |
3.9 |
| exploitability |
0.5 |
| weighted_severity |
7.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dnv8-yrd6-c7cv |
|
| 31 |
| url |
VCID-dv5v-71b5-budp |
| vulnerability_id |
VCID-dv5v-71b5-budp |
| summary |
python: use after free in heappushpop() of heapq module |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-48560 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00202 |
| scoring_system |
epss |
| scoring_elements |
0.42375 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00202 |
| scoring_system |
epss |
| scoring_elements |
0.42405 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.00202 |
| scoring_system |
epss |
| scoring_elements |
0.42344 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.00202 |
| scoring_system |
epss |
| scoring_elements |
0.42393 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00202 |
| scoring_system |
epss |
| scoring_elements |
0.424 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00202 |
| scoring_system |
epss |
| scoring_elements |
0.42423 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00202 |
| scoring_system |
epss |
| scoring_elements |
0.42387 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00202 |
| scoring_system |
epss |
| scoring_elements |
0.42358 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00202 |
| scoring_system |
epss |
| scoring_elements |
0.42407 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00202 |
| scoring_system |
epss |
| scoring_elements |
0.42382 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-48560 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
|
| fixed_packages |
|
| aliases |
CVE-2022-48560
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-dv5v-71b5-budp |
|
| 32 |
| url |
VCID-e6rs-jwvu-jycd |
| vulnerability_id |
VCID-e6rs-jwvu-jycd |
| summary |
python: urllib: HTTP client possible infinite loop on a 100 Continue response |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3737 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30825 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30818 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30954 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30832 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30852 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30821 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30866 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30909 |
| published_at |
2026-04-11T12:55:00Z |
|
| 8 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30906 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.30876 |
| published_at |
2026-04-08T12:55:00Z |
|
| 10 |
| value |
0.00119 |
| scoring_system |
epss |
| scoring_elements |
0.31001 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-3737 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-3737
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-e6rs-jwvu-jycd |
|
| 33 |
| url |
VCID-e6sb-bh7v-9ugg |
| vulnerability_id |
VCID-e6sb-bh7v-9ugg |
| summary |
python: cpython: URL parser allowed square brackets in domain names |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-0938 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01561 |
| scoring_system |
epss |
| scoring_elements |
0.81426 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.01561 |
| scoring_system |
epss |
| scoring_elements |
0.81482 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.01561 |
| scoring_system |
epss |
| scoring_elements |
0.81489 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.01561 |
| scoring_system |
epss |
| scoring_elements |
0.81501 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.01561 |
| scoring_system |
epss |
| scoring_elements |
0.8148 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.01561 |
| scoring_system |
epss |
| scoring_elements |
0.81474 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.01561 |
| scoring_system |
epss |
| scoring_elements |
0.81448 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.01561 |
| scoring_system |
epss |
| scoring_elements |
0.81446 |
| published_at |
2026-04-07T12:55:00Z |
|
| 8 |
| value |
0.01728 |
| scoring_system |
epss |
| scoring_elements |
0.82481 |
| published_at |
2026-04-18T12:55:00Z |
|
| 9 |
| value |
0.01728 |
| scoring_system |
epss |
| scoring_elements |
0.8248 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-0938 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-0938
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
6.1 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-e6sb-bh7v-9ugg |
|
| 34 |
| url |
VCID-emaw-jmek-9bcy |
| vulnerability_id |
VCID-emaw-jmek-9bcy |
| summary |
cpython: Python HTMLParser quadratic complexity |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-6069 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00283 |
| scoring_system |
epss |
| scoring_elements |
0.51588 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00306 |
| scoring_system |
epss |
| scoring_elements |
0.5389 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00306 |
| scoring_system |
epss |
| scoring_elements |
0.53842 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00306 |
| scoring_system |
epss |
| scoring_elements |
0.53844 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00306 |
| scoring_system |
epss |
| scoring_elements |
0.53818 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00306 |
| scoring_system |
epss |
| scoring_elements |
0.53792 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00306 |
| scoring_system |
epss |
| scoring_elements |
0.53873 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00864 |
| scoring_system |
epss |
| scoring_elements |
0.7513 |
| published_at |
2026-04-18T12:55:00Z |
|
| 8 |
| value |
0.00864 |
| scoring_system |
epss |
| scoring_elements |
0.75086 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00864 |
| scoring_system |
epss |
| scoring_elements |
0.75123 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-6069 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-6069
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-emaw-jmek-9bcy |
|
| 35 |
| url |
VCID-ewbq-2gm8-tyf5 |
| vulnerability_id |
VCID-ewbq-2gm8-tyf5 |
| summary |
Buffer overflow in sponge queue functions
### Impact
The Keccak sponge function interface accepts partial inputs to be absorbed and partial outputs to be squeezed. A buffer can overflow when partial data with some specific sizes are queued, where at least one of them has a length of 2^32 - 200 bytes or more.
### Patches
Yes, see commit [fdc6fef0](https://github.com/XKCP/XKCP/commit/fdc6fef075f4e81d6b1bc38364248975e08e340a).
### Workarounds
The problem can be avoided by limiting the size of the partial input data (or partial output digest) below 2^32 - 200 bytes. Multiple calls to the queue system can be chained at a higher level to retain the original functionality. Alternatively, one can process the entire input (or produce the entire output) at once, avoiding the queuing functions altogether.
### References
See [issue #105](https://github.com/XKCP/XKCP/issues/105) for more details. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-37454 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01329 |
| scoring_system |
epss |
| scoring_elements |
0.79943 |
| published_at |
2026-04-12T12:55:00Z |
|
| 1 |
| value |
0.01329 |
| scoring_system |
epss |
| scoring_elements |
0.7996 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.01329 |
| scoring_system |
epss |
| scoring_elements |
0.79935 |
| published_at |
2026-04-13T12:55:00Z |
|
| 3 |
| value |
0.01329 |
| scoring_system |
epss |
| scoring_elements |
0.79894 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.01329 |
| scoring_system |
epss |
| scoring_elements |
0.79915 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.01329 |
| scoring_system |
epss |
| scoring_elements |
0.79903 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.01329 |
| scoring_system |
epss |
| scoring_elements |
0.79931 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.01329 |
| scoring_system |
epss |
| scoring_elements |
0.7994 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.014 |
| scoring_system |
epss |
| scoring_elements |
0.80446 |
| published_at |
2026-04-18T12:55:00Z |
|
| 9 |
| value |
0.014 |
| scoring_system |
epss |
| scoring_elements |
0.80444 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-37454 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
| reference_url |
https://eprint.iacr.org/2023/331 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
9.8 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
|
| 1 |
| value |
CRITICAL |
| scoring_system |
generic_textual |
| scoring_elements |
|
|
| 2 |
| value |
Track* |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-05-08T15:03:12Z/ |
|
|
| url |
https://eprint.iacr.org/2023/331 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
|
| fixed_packages |
|
| aliases |
CVE-2022-37454, GHSA-6w4m-2xhg-2658
|
| risk_score |
4.5 |
| exploitability |
0.5 |
| weighted_severity |
9.0 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ewbq-2gm8-tyf5 |
|
| 36 |
| url |
VCID-fcsb-dn49-47gy |
| vulnerability_id |
VCID-fcsb-dn49-47gy |
| summary |
python: Quadratic complexity in os.path.expandvars() with user-controlled template |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-6075 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05701 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05661 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.0576 |
| published_at |
2026-04-09T12:55:00Z |
|
| 3 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05734 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00021 |
| scoring_system |
epss |
| scoring_elements |
0.05694 |
| published_at |
2026-04-07T12:55:00Z |
|
| 5 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08414 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08574 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08553 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08536 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.0003 |
| scoring_system |
epss |
| scoring_elements |
0.08429 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-6075 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-6075
|
| risk_score |
1.8 |
| exploitability |
0.5 |
| weighted_severity |
3.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-fcsb-dn49-47gy |
|
| 37 |
| url |
VCID-gvgx-eq9r-d3d2 |
| vulnerability_id |
VCID-gvgx-eq9r-d3d2 |
| summary |
Multiple vulnerabilities have been found in Python, the worst of
which could result in the arbitrary execution of code. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-26116 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00903 |
| scoring_system |
epss |
| scoring_elements |
0.75643 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00903 |
| scoring_system |
epss |
| scoring_elements |
0.75645 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00903 |
| scoring_system |
epss |
| scoring_elements |
0.75676 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00903 |
| scoring_system |
epss |
| scoring_elements |
0.75655 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00903 |
| scoring_system |
epss |
| scoring_elements |
0.7569 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00903 |
| scoring_system |
epss |
| scoring_elements |
0.757 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00903 |
| scoring_system |
epss |
| scoring_elements |
0.75725 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00903 |
| scoring_system |
epss |
| scoring_elements |
0.75706 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00903 |
| scoring_system |
epss |
| scoring_elements |
0.75699 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.01017 |
| scoring_system |
epss |
| scoring_elements |
0.77213 |
| published_at |
2026-04-21T12:55:00Z |
|
| 10 |
| value |
0.01017 |
| scoring_system |
epss |
| scoring_elements |
0.7722 |
| published_at |
2026-04-16T12:55:00Z |
|
| 11 |
| value |
0.01017 |
| scoring_system |
epss |
| scoring_elements |
0.77222 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-26116 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-26116
|
| risk_score |
3.0 |
| exploitability |
0.5 |
| weighted_severity |
5.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gvgx-eq9r-d3d2 |
|
| 38 |
| url |
VCID-gxvd-xhmx-2uh9 |
| vulnerability_id |
VCID-gxvd-xhmx-2uh9 |
| summary |
python: sensitive information can be obtained via the _asyncio._swap_current_task component. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-38898 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59561 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59642 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59602 |
| published_at |
2026-04-13T12:55:00Z |
|
| 3 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59635 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59586 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59555 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59607 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.5962 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59639 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00382 |
| scoring_system |
epss |
| scoring_elements |
0.59622 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-38898 |
|
| 2 |
|
| 3 |
|
| 4 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-38898
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-gxvd-xhmx-2uh9 |
|
| 39 |
| url |
VCID-h7z2-vc14-nfhq |
| vulnerability_id |
VCID-h7z2-vc14-nfhq |
| summary |
python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10735 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59716 |
| published_at |
2026-04-21T12:55:00Z |
|
| 1 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59726 |
| published_at |
2026-04-11T12:55:00Z |
|
| 2 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.5971 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59691 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59724 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59731 |
| published_at |
2026-04-18T12:55:00Z |
|
| 6 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59693 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59707 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00395 |
| scoring_system |
epss |
| scoring_elements |
0.60314 |
| published_at |
2026-04-02T12:55:00Z |
|
| 9 |
| value |
0.00395 |
| scoring_system |
epss |
| scoring_elements |
0.60339 |
| published_at |
2026-04-04T12:55:00Z |
|
| 10 |
| value |
0.00395 |
| scoring_system |
epss |
| scoring_elements |
0.60307 |
| published_at |
2026-04-07T12:55:00Z |
|
| 11 |
| value |
0.00395 |
| scoring_system |
epss |
| scoring_elements |
0.60237 |
| published_at |
2026-04-01T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2020-10735 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
|
| fixed_packages |
|
| aliases |
CVE-2020-10735
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-h7z2-vc14-nfhq |
|
| 40 |
| url |
VCID-hssa-umby-eud3 |
| vulnerability_id |
VCID-hssa-umby-eud3 |
| summary |
python: local privilege escalation via search path in Windows |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-26488 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01607 |
| scoring_system |
epss |
| scoring_elements |
0.81715 |
| published_at |
2026-04-04T12:55:00Z |
|
| 1 |
| value |
0.01607 |
| scoring_system |
epss |
| scoring_elements |
0.81712 |
| published_at |
2026-04-07T12:55:00Z |
|
| 2 |
| value |
0.01607 |
| scoring_system |
epss |
| scoring_elements |
0.81739 |
| published_at |
2026-04-08T12:55:00Z |
|
| 3 |
| value |
0.01607 |
| scoring_system |
epss |
| scoring_elements |
0.81743 |
| published_at |
2026-04-09T12:55:00Z |
|
| 4 |
| value |
0.01607 |
| scoring_system |
epss |
| scoring_elements |
0.81763 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.01607 |
| scoring_system |
epss |
| scoring_elements |
0.8175 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.01607 |
| scoring_system |
epss |
| scoring_elements |
0.81744 |
| published_at |
2026-04-13T12:55:00Z |
|
| 7 |
| value |
0.01607 |
| scoring_system |
epss |
| scoring_elements |
0.81782 |
| published_at |
2026-04-16T12:55:00Z |
|
| 8 |
| value |
0.01607 |
| scoring_system |
epss |
| scoring_elements |
0.81783 |
| published_at |
2026-04-18T12:55:00Z |
|
| 9 |
| value |
0.01669 |
| scoring_system |
epss |
| scoring_elements |
0.82055 |
| published_at |
2026-04-02T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-26488 |
|
| 2 |
|
|
| fixed_packages |
|
| aliases |
CVE-2022-26488
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hssa-umby-eud3 |
|
| 41 |
| url |
VCID-hz5k-rky7-nucg |
| vulnerability_id |
VCID-hz5k-rky7-nucg |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-41105 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58339 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58406 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58333 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58385 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58391 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58409 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58388 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58369 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58401 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00363 |
| scoring_system |
epss |
| scoring_elements |
0.58359 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-41105 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-41105
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-hz5k-rky7-nucg |
|
| 42 |
| url |
VCID-j8hj-k7wy-yfch |
| vulnerability_id |
VCID-j8hj-k7wy-yfch |
| summary |
python: ftplib should not use the host from the PASV response |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-4189 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01057 |
| scoring_system |
epss |
| scoring_elements |
0.77554 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.01057 |
| scoring_system |
epss |
| scoring_elements |
0.77547 |
| published_at |
2026-04-01T12:55:00Z |
|
| 2 |
| value |
0.01057 |
| scoring_system |
epss |
| scoring_elements |
0.7758 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.01057 |
| scoring_system |
epss |
| scoring_elements |
0.7756 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.01057 |
| scoring_system |
epss |
| scoring_elements |
0.7759 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.01057 |
| scoring_system |
epss |
| scoring_elements |
0.77597 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.01057 |
| scoring_system |
epss |
| scoring_elements |
0.77624 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.01057 |
| scoring_system |
epss |
| scoring_elements |
0.77608 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.01057 |
| scoring_system |
epss |
| scoring_elements |
0.77607 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.01057 |
| scoring_system |
epss |
| scoring_elements |
0.77644 |
| published_at |
2026-04-16T12:55:00Z |
|
| 10 |
| value |
0.01057 |
| scoring_system |
epss |
| scoring_elements |
0.77642 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-4189 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-4189
|
| risk_score |
2.4 |
| exploitability |
0.5 |
| weighted_severity |
4.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-j8hj-k7wy-yfch |
|
| 43 |
| url |
VCID-js5p-py72-2kga |
| vulnerability_id |
VCID-js5p-py72-2kga |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-0450 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.35429 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.35454 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.3538 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.35392 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.35411 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.35374 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.35338 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.35384 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.35409 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.00148 |
| scoring_system |
epss |
| scoring_elements |
0.35352 |
| published_at |
2026-04-13T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-0450 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-0450
|
| risk_score |
2.8 |
| exploitability |
0.5 |
| weighted_severity |
5.6 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-js5p-py72-2kga |
|
| 44 |
| url |
VCID-kn9b-2gxw-gqgx |
| vulnerability_id |
VCID-kn9b-2gxw-gqgx |
| summary |
cpython: email header injection due to unquoted newlines |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-1299 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13681 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13472 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13742 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13544 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13624 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13676 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13646 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13609 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13561 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00044 |
| scoring_system |
epss |
| scoring_elements |
0.13476 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-1299 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-1299
|
| risk_score |
3.2 |
| exploitability |
0.5 |
| weighted_severity |
6.4 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-kn9b-2gxw-gqgx |
|
| 45 |
| url |
VCID-mtk7-qut6-syd8 |
| vulnerability_id |
VCID-mtk7-qut6-syd8 |
| summary |
cpython: Cpython infinite loop when parsing a tarfile |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-8194 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00176 |
| scoring_system |
epss |
| scoring_elements |
0.39129 |
| published_at |
2026-04-07T12:55:00Z |
|
| 1 |
| value |
0.00176 |
| scoring_system |
epss |
| scoring_elements |
0.3921 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.00176 |
| scoring_system |
epss |
| scoring_elements |
0.39174 |
| published_at |
2026-04-12T12:55:00Z |
|
| 3 |
| value |
0.00176 |
| scoring_system |
epss |
| scoring_elements |
0.39211 |
| published_at |
2026-04-11T12:55:00Z |
|
| 4 |
| value |
0.00176 |
| scoring_system |
epss |
| scoring_elements |
0.392 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00176 |
| scoring_system |
epss |
| scoring_elements |
0.39184 |
| published_at |
2026-04-08T12:55:00Z |
|
| 6 |
| value |
0.0019 |
| scoring_system |
epss |
| scoring_elements |
0.40883 |
| published_at |
2026-04-02T12:55:00Z |
|
| 7 |
| value |
0.00231 |
| scoring_system |
epss |
| scoring_elements |
0.45951 |
| published_at |
2026-04-18T12:55:00Z |
|
| 8 |
| value |
0.00231 |
| scoring_system |
epss |
| scoring_elements |
0.45905 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00231 |
| scoring_system |
epss |
| scoring_elements |
0.45957 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-8194 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-8194
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-mtk7-qut6-syd8 |
|
| 46 |
| url |
VCID-nqqc-u8d5-8qf6 |
| vulnerability_id |
VCID-nqqc-u8d5-8qf6 |
| summary |
cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of service |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-12084 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00049 |
| scoring_system |
epss |
| scoring_elements |
0.15347 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00058 |
| scoring_system |
epss |
| scoring_elements |
0.17978 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00058 |
| scoring_system |
epss |
| scoring_elements |
0.18263 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00058 |
| scoring_system |
epss |
| scoring_elements |
0.17965 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00058 |
| scoring_system |
epss |
| scoring_elements |
0.1805 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00058 |
| scoring_system |
epss |
| scoring_elements |
0.18111 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00058 |
| scoring_system |
epss |
| scoring_elements |
0.18118 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00058 |
| scoring_system |
epss |
| scoring_elements |
0.18075 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00058 |
| scoring_system |
epss |
| scoring_elements |
0.18025 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00058 |
| scoring_system |
epss |
| scoring_elements |
0.17968 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-12084 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
| 50 |
|
| 51 |
|
| 52 |
|
| 53 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-12084
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-nqqc-u8d5-8qf6 |
|
| 47 |
| url |
VCID-q6g1-cjz3-77e4 |
| vulnerability_id |
VCID-q6g1-cjz3-77e4 |
| summary |
cpython: Tarfile extracts filtered members when errorlevel=0 |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-4435 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67621 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67712 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67642 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67622 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67673 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67688 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67711 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67696 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67663 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00541 |
| scoring_system |
epss |
| scoring_elements |
0.67699 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-4435 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-4435
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-q6g1-cjz3-77e4 |
|
| 48 |
| url |
VCID-qqh6-evfk-1fgy |
| vulnerability_id |
VCID-qqh6-evfk-1fgy |
| summary |
Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-45061 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00109 |
| scoring_system |
epss |
| scoring_elements |
0.29338 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00109 |
| scoring_system |
epss |
| scoring_elements |
0.29264 |
| published_at |
2026-04-08T12:55:00Z |
|
| 2 |
| value |
0.00109 |
| scoring_system |
epss |
| scoring_elements |
0.292 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.00109 |
| scoring_system |
epss |
| scoring_elements |
0.29209 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00109 |
| scoring_system |
epss |
| scoring_elements |
0.29262 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00109 |
| scoring_system |
epss |
| scoring_elements |
0.29308 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00109 |
| scoring_system |
epss |
| scoring_elements |
0.29304 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00109 |
| scoring_system |
epss |
| scoring_elements |
0.29236 |
| published_at |
2026-04-16T12:55:00Z |
|
| 8 |
| value |
0.00109 |
| scoring_system |
epss |
| scoring_elements |
0.29387 |
| published_at |
2026-04-04T12:55:00Z |
|
| 9 |
| value |
0.00124 |
| scoring_system |
epss |
| scoring_elements |
0.31557 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-45061 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
| 44 |
|
| 45 |
|
| 46 |
|
| 47 |
|
| 48 |
|
| 49 |
|
|
| fixed_packages |
|
| aliases |
CVE-2022-45061
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qqh6-evfk-1fgy |
|
| 49 |
| url |
VCID-qwhz-912b-8kh5 |
| vulnerability_id |
VCID-qwhz-912b-8kh5 |
| summary |
cpython: python: Memory race condition in ssl.SSLContext certificate store methods |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-0397 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59717 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59633 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59658 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59628 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59679 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59692 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59712 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59695 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.59677 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00384 |
| scoring_system |
epss |
| scoring_elements |
0.5971 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-0397 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-0397
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-qwhz-912b-8kh5 |
|
| 50 |
|
| 51 |
| url |
VCID-s5yq-pjhc-fbcm |
| vulnerability_id |
VCID-s5yq-pjhc-fbcm |
| summary |
python: Default mimetype known files writeable on Windows |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-3220 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00288 |
| scoring_system |
epss |
| scoring_elements |
0.52305 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.00288 |
| scoring_system |
epss |
| scoring_elements |
0.52263 |
| published_at |
2026-04-13T12:55:00Z |
|
| 2 |
| value |
0.00288 |
| scoring_system |
epss |
| scoring_elements |
0.52301 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00288 |
| scoring_system |
epss |
| scoring_elements |
0.52202 |
| published_at |
2026-04-02T12:55:00Z |
|
| 4 |
| value |
0.00288 |
| scoring_system |
epss |
| scoring_elements |
0.5223 |
| published_at |
2026-04-04T12:55:00Z |
|
| 5 |
| value |
0.00288 |
| scoring_system |
epss |
| scoring_elements |
0.52194 |
| published_at |
2026-04-07T12:55:00Z |
|
| 6 |
| value |
0.00288 |
| scoring_system |
epss |
| scoring_elements |
0.52248 |
| published_at |
2026-04-08T12:55:00Z |
|
| 7 |
| value |
0.00288 |
| scoring_system |
epss |
| scoring_elements |
0.52243 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00288 |
| scoring_system |
epss |
| scoring_elements |
0.52294 |
| published_at |
2026-04-11T12:55:00Z |
|
| 9 |
| value |
0.00288 |
| scoring_system |
epss |
| scoring_elements |
0.52277 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-3220 |
|
| 2 |
|
| 3 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-3220
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-s5yq-pjhc-fbcm |
|
| 52 |
| url |
VCID-s7qf-hjkq-wkdy |
| vulnerability_id |
VCID-s7qf-hjkq-wkdy |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy3, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-6507 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00083 |
| scoring_system |
epss |
| scoring_elements |
0.24197 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.00083 |
| scoring_system |
epss |
| scoring_elements |
0.24382 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.00083 |
| scoring_system |
epss |
| scoring_elements |
0.24166 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.00083 |
| scoring_system |
epss |
| scoring_elements |
0.24232 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00083 |
| scoring_system |
epss |
| scoring_elements |
0.24276 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00083 |
| scoring_system |
epss |
| scoring_elements |
0.24293 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00083 |
| scoring_system |
epss |
| scoring_elements |
0.24251 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00083 |
| scoring_system |
epss |
| scoring_elements |
0.24193 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00083 |
| scoring_system |
epss |
| scoring_elements |
0.24209 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00101 |
| scoring_system |
epss |
| scoring_elements |
0.27973 |
| published_at |
2026-04-02T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-6507 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-6507
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-s7qf-hjkq-wkdy |
|
| 53 |
| url |
VCID-sbe1-cx8r-aba1 |
| vulnerability_id |
VCID-sbe1-cx8r-aba1 |
| summary |
On Windows a directory returned by tempfile.mkdtemp() would not always have permissions set to restrict reading and writing to the temporary directory by other users, instead usually inheriting the correct permissions from the default location. Alternate configurations or users without a profile directory may not have the intended permissions.
If you’re not using Windows or haven’t changed the temporary directory location then you aren’t affected by this vulnerability. On other platforms the returned directory is consistently readable and writable only by the current user.
This issue was caused by Python not supporting Unix permissions on Windows. The fix adds support for Unix “700” for the mkdir function on Windows which is used by mkdtemp() to ensure the newly created directory has the proper permissions. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-4030 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.06808 |
| published_at |
2026-04-08T12:55:00Z |
|
| 1 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.06772 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.0678 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.06838 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.06723 |
| published_at |
2026-04-02T12:55:00Z |
|
| 5 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.06844 |
| published_at |
2026-04-12T12:55:00Z |
|
| 6 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.0685 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.06846 |
| published_at |
2026-04-09T12:55:00Z |
|
| 8 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.0677 |
| published_at |
2026-04-04T12:55:00Z |
|
| 9 |
| value |
0.00025 |
| scoring_system |
epss |
| scoring_elements |
0.06756 |
| published_at |
2026-04-07T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-4030 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-4030
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-sbe1-cx8r-aba1 |
|
| 54 |
| url |
VCID-smck-sdx2-c7du |
| vulnerability_id |
VCID-smck-sdx2-c7du |
| summary |
python: Improper validation of IPv6 and IPvFuture addresses |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-11168 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00475 |
| scoring_system |
epss |
| scoring_elements |
0.64815 |
| published_at |
2026-04-09T12:55:00Z |
|
| 1 |
| value |
0.00475 |
| scoring_system |
epss |
| scoring_elements |
0.64801 |
| published_at |
2026-04-08T12:55:00Z |
|
| 2 |
| value |
0.00475 |
| scoring_system |
epss |
| scoring_elements |
0.64751 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.00517 |
| scoring_system |
epss |
| scoring_elements |
0.66749 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.00517 |
| scoring_system |
epss |
| scoring_elements |
0.6672 |
| published_at |
2026-04-13T12:55:00Z |
|
| 5 |
| value |
0.00517 |
| scoring_system |
epss |
| scoring_elements |
0.66762 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00552 |
| scoring_system |
epss |
| scoring_elements |
0.68006 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.00552 |
| scoring_system |
epss |
| scoring_elements |
0.67987 |
| published_at |
2026-04-02T12:55:00Z |
|
| 8 |
| value |
0.00602 |
| scoring_system |
epss |
| scoring_elements |
0.69553 |
| published_at |
2026-04-18T12:55:00Z |
|
| 9 |
| value |
0.00602 |
| scoring_system |
epss |
| scoring_elements |
0.69544 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-11168 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://github.com/python/cpython/issues/103848 |
| reference_id |
103848 |
| reference_type |
|
| scores |
| 0 |
| value |
3.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
6.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N |
|
| 2 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/ |
|
|
| url |
https://github.com/python/cpython/issues/103848 |
|
| 5 |
| reference_url |
https://github.com/python/cpython/pull/103849 |
| reference_id |
103849 |
| reference_type |
|
| scores |
| 0 |
| value |
3.7 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N |
|
| 1 |
| value |
6.3 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:L/SA:N/AU:N |
|
| 2 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-13T15:09:42Z/ |
|
|
| url |
https://github.com/python/cpython/pull/103849 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-11168
|
| risk_score |
2.9 |
| exploitability |
0.5 |
| weighted_severity |
5.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-smck-sdx2-c7du |
|
| 55 |
| url |
VCID-tbuw-2msj-tqd9 |
| vulnerability_id |
VCID-tbuw-2msj-tqd9 |
| summary |
python: Virtual environment (venv) activation scripts don't quote paths |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-9287 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19545 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19591 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.00064 |
| scoring_system |
epss |
| scoring_elements |
0.19866 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.00064 |
| scoring_system |
epss |
| scoring_elements |
0.19835 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00064 |
| scoring_system |
epss |
| scoring_elements |
0.19915 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00064 |
| scoring_system |
epss |
| scoring_elements |
0.19969 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00064 |
| scoring_system |
epss |
| scoring_elements |
0.19987 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00064 |
| scoring_system |
epss |
| scoring_elements |
0.19944 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00064 |
| scoring_system |
epss |
| scoring_elements |
0.19885 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00064 |
| scoring_system |
epss |
| scoring_elements |
0.19862 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-9287 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-9287
|
| risk_score |
2.9 |
| exploitability |
0.5 |
| weighted_severity |
5.7 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tbuw-2msj-tqd9 |
|
| 56 |
| url |
VCID-tyk4-kazt-kydj |
| vulnerability_id |
VCID-tyk4-kazt-kydj |
| summary |
Multiple vulnerabilities have been found in Python, the worst of
which could result in a Denial of Service condition. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2019-20907 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00323 |
| scoring_system |
epss |
| scoring_elements |
0.55257 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.00323 |
| scoring_system |
epss |
| scoring_elements |
0.55355 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00323 |
| scoring_system |
epss |
| scoring_elements |
0.5538 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00323 |
| scoring_system |
epss |
| scoring_elements |
0.55358 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00323 |
| scoring_system |
epss |
| scoring_elements |
0.55408 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00323 |
| scoring_system |
epss |
| scoring_elements |
0.55419 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00323 |
| scoring_system |
epss |
| scoring_elements |
0.55397 |
| published_at |
2026-04-21T12:55:00Z |
|
| 7 |
| value |
0.00323 |
| scoring_system |
epss |
| scoring_elements |
0.55379 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00323 |
| scoring_system |
epss |
| scoring_elements |
0.55414 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00323 |
| scoring_system |
epss |
| scoring_elements |
0.55418 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2019-20907 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
|
| fixed_packages |
|
| aliases |
CVE-2019-20907
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-tyk4-kazt-kydj |
|
| 57 |
| url |
VCID-uf5s-kms5-g7a9 |
| vulnerability_id |
VCID-uf5s-kms5-g7a9 |
| summary |
cpython: POP3 command injection in user-controlled commands |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-15367 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23923 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23796 |
| published_at |
2026-04-16T12:55:00Z |
|
| 2 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23964 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23752 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23823 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.2387 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23885 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23841 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00081 |
| scoring_system |
epss |
| scoring_elements |
0.23784 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-15367 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-15367
|
| risk_score |
3.2 |
| exploitability |
0.5 |
| weighted_severity |
6.4 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-uf5s-kms5-g7a9 |
|
| 58 |
| url |
VCID-uvcx-satp-m3db |
| vulnerability_id |
VCID-uvcx-satp-m3db |
| summary |
python: Unbounded memory buffering in SelectorSocketTransport.writelines() |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-12254 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00249 |
| scoring_system |
epss |
| scoring_elements |
0.48235 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.00249 |
| scoring_system |
epss |
| scoring_elements |
0.48161 |
| published_at |
2026-04-02T12:55:00Z |
|
| 2 |
| value |
0.00249 |
| scoring_system |
epss |
| scoring_elements |
0.48182 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00249 |
| scoring_system |
epss |
| scoring_elements |
0.48132 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00249 |
| scoring_system |
epss |
| scoring_elements |
0.48185 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00249 |
| scoring_system |
epss |
| scoring_elements |
0.4818 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00249 |
| scoring_system |
epss |
| scoring_elements |
0.48204 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00249 |
| scoring_system |
epss |
| scoring_elements |
0.48177 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00249 |
| scoring_system |
epss |
| scoring_elements |
0.48188 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00249 |
| scoring_system |
epss |
| scoring_elements |
0.4824 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-12254 |
|
| 2 |
|
| 3 |
|
| 4 |
| reference_url |
https://github.com/python/cpython/issues/127655 |
| reference_id |
127655 |
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-06T15:35:11Z/ |
|
|
| url |
https://github.com/python/cpython/issues/127655 |
|
| 5 |
| reference_url |
https://github.com/python/cpython/pull/127656 |
| reference_id |
127656 |
| reference_type |
|
| scores |
| 0 |
| value |
7.5 |
| scoring_system |
cvssv3.1 |
| scoring_elements |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
|
| 1 |
| value |
8.7 |
| scoring_system |
cvssv4 |
| scoring_elements |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
|
| 2 |
| value |
Track |
| scoring_system |
ssvc |
| scoring_elements |
SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-12-06T15:35:11Z/ |
|
|
| url |
https://github.com/python/cpython/pull/127656 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-12254
|
| risk_score |
3.9 |
| exploitability |
0.5 |
| weighted_severity |
7.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-uvcx-satp-m3db |
|
| 59 |
| url |
VCID-v186-7sv1-ubej |
| vulnerability_id |
VCID-v186-7sv1-ubej |
| summary |
Multiple vulberabilities have been discovered in Python and PyPy, the worst of which can lead to privilege escalation. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-7592 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00796 |
| scoring_system |
epss |
| scoring_elements |
0.73941 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00796 |
| scoring_system |
epss |
| scoring_elements |
0.73966 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.01018 |
| scoring_system |
epss |
| scoring_elements |
0.77233 |
| published_at |
2026-04-18T12:55:00Z |
|
| 3 |
| value |
0.01018 |
| scoring_system |
epss |
| scoring_elements |
0.77147 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.01018 |
| scoring_system |
epss |
| scoring_elements |
0.77179 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.01018 |
| scoring_system |
epss |
| scoring_elements |
0.77188 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.01018 |
| scoring_system |
epss |
| scoring_elements |
0.77215 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.01018 |
| scoring_system |
epss |
| scoring_elements |
0.77195 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.01018 |
| scoring_system |
epss |
| scoring_elements |
0.77191 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.01018 |
| scoring_system |
epss |
| scoring_elements |
0.77231 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-7592 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-7592
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-v186-7sv1-ubej |
|
| 60 |
| url |
VCID-v6ry-7xxz-nbeu |
| vulnerability_id |
VCID-v6ry-7xxz-nbeu |
| summary |
CPython v3.12.0 alpha 7 was discovered to contain a heap use-after-free via the function ascii_decode at /Objects/unicodeobject.c. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2023-33595 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00064 |
| scoring_system |
epss |
| scoring_elements |
0.20077 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00089 |
| scoring_system |
epss |
| scoring_elements |
0.25541 |
| published_at |
2026-04-04T12:55:00Z |
|
| 2 |
| value |
0.00089 |
| scoring_system |
epss |
| scoring_elements |
0.25313 |
| published_at |
2026-04-07T12:55:00Z |
|
| 3 |
| value |
0.00089 |
| scoring_system |
epss |
| scoring_elements |
0.25381 |
| published_at |
2026-04-08T12:55:00Z |
|
| 4 |
| value |
0.00089 |
| scoring_system |
epss |
| scoring_elements |
0.25426 |
| published_at |
2026-04-09T12:55:00Z |
|
| 5 |
| value |
0.00089 |
| scoring_system |
epss |
| scoring_elements |
0.25437 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00089 |
| scoring_system |
epss |
| scoring_elements |
0.25396 |
| published_at |
2026-04-12T12:55:00Z |
|
| 7 |
| value |
0.00089 |
| scoring_system |
epss |
| scoring_elements |
0.25342 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00089 |
| scoring_system |
epss |
| scoring_elements |
0.25349 |
| published_at |
2026-04-16T12:55:00Z |
|
| 9 |
| value |
0.00089 |
| scoring_system |
epss |
| scoring_elements |
0.25341 |
| published_at |
2026-04-18T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2023-33595 |
|
|
| fixed_packages |
|
| aliases |
CVE-2023-33595
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-v6ry-7xxz-nbeu |
|
| 61 |
| url |
VCID-vpwj-d49q-1uh8 |
| vulnerability_id |
VCID-vpwj-d49q-1uh8 |
| summary |
Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2022-0391 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79807 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79865 |
| published_at |
2026-04-12T12:55:00Z |
|
| 2 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79815 |
| published_at |
2026-04-02T12:55:00Z |
|
| 3 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79886 |
| published_at |
2026-04-18T12:55:00Z |
|
| 4 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79885 |
| published_at |
2026-04-16T12:55:00Z |
|
| 5 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79857 |
| published_at |
2026-04-13T12:55:00Z |
|
| 6 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79835 |
| published_at |
2026-04-04T12:55:00Z |
|
| 7 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79823 |
| published_at |
2026-04-07T12:55:00Z |
|
| 8 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79852 |
| published_at |
2026-04-08T12:55:00Z |
|
| 9 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.7986 |
| published_at |
2026-04-09T12:55:00Z |
|
| 10 |
| value |
0.01317 |
| scoring_system |
epss |
| scoring_elements |
0.79882 |
| published_at |
2026-04-11T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2022-0391 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
|
| fixed_packages |
|
| aliases |
CVE-2022-0391
|
| risk_score |
3.4 |
| exploitability |
0.5 |
| weighted_severity |
6.8 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-vpwj-d49q-1uh8 |
|
| 62 |
| url |
VCID-w6k8-js68-87g4 |
| vulnerability_id |
VCID-w6k8-js68-87g4 |
| summary |
Multiple vulnerabilities have been found in Python, the worst of
which might allow attackers to access sensitive information. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-23336 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53385 |
| published_at |
2026-04-18T12:55:00Z |
|
| 1 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53379 |
| published_at |
2026-04-16T12:55:00Z |
|
| 2 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53329 |
| published_at |
2026-04-08T12:55:00Z |
|
| 3 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53358 |
| published_at |
2026-04-12T12:55:00Z |
|
| 4 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53374 |
| published_at |
2026-04-11T12:55:00Z |
|
| 5 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53323 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53276 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.003 |
| scoring_system |
epss |
| scoring_elements |
0.53342 |
| published_at |
2026-04-13T12:55:00Z |
|
| 8 |
| value |
0.00311 |
| scoring_system |
epss |
| scoring_elements |
0.54271 |
| published_at |
2026-04-02T12:55:00Z |
|
| 9 |
| value |
0.00311 |
| scoring_system |
epss |
| scoring_elements |
0.54251 |
| published_at |
2026-04-01T12:55:00Z |
|
| 10 |
| value |
0.00311 |
| scoring_system |
epss |
| scoring_elements |
0.54301 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-23336 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
| 35 |
|
| 36 |
|
| 37 |
|
| 38 |
|
| 39 |
|
| 40 |
|
| 41 |
|
| 42 |
|
| 43 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-23336
|
| risk_score |
3.1 |
| exploitability |
0.5 |
| weighted_severity |
6.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-w6k8-js68-87g4 |
|
| 63 |
| url |
VCID-ymg5-42xm-7fh9 |
| vulnerability_id |
VCID-ymg5-42xm-7fh9 |
| summary |
The
“socket” module provides a pure-Python fallback to the
socket.socketpair() function for platforms that don’t support AF_UNIX,
such as Windows. This pure-Python implementation uses AF_INET or
AF_INET6 to create a local connected pair of sockets. The connection
between the two sockets was not verified before passing the two sockets
back to the user, which leaves the server socket vulnerable to a
connection race from a malicious local peer.
Platforms that support AF_UNIX such as Linux and macOS are not affected by this vulnerability. Versions prior to CPython 3.5 are not affected due to the vulnerable API not being included. |
| references |
| 0 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2024-3219 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19162 |
| published_at |
2026-04-07T12:55:00Z |
|
| 1 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19165 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19156 |
| published_at |
2026-04-16T12:55:00Z |
|
| 3 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19197 |
| published_at |
2026-04-13T12:55:00Z |
|
| 4 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19251 |
| published_at |
2026-04-12T12:55:00Z |
|
| 5 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19298 |
| published_at |
2026-04-11T12:55:00Z |
|
| 6 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19293 |
| published_at |
2026-04-09T12:55:00Z |
|
| 7 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19241 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19393 |
| published_at |
2026-04-02T12:55:00Z |
|
| 9 |
| value |
0.00062 |
| scoring_system |
epss |
| scoring_elements |
0.19444 |
| published_at |
2026-04-04T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2024-3219 |
|
| 1 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
|
| fixed_packages |
|
| aliases |
CVE-2024-3219
|
| risk_score |
null |
| exploitability |
null |
| weighted_severity |
null |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-ymg5-42xm-7fh9 |
|
| 64 |
| url |
VCID-z48d-eyxz-bycq |
| vulnerability_id |
VCID-z48d-eyxz-bycq |
| summary |
Multiple vulnerabilities have been found in Python and PyPy, the worst of which could result in arbitrary code execution. |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2021-29921 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.02048 |
| scoring_system |
epss |
| scoring_elements |
0.83792 |
| published_at |
2026-04-01T12:55:00Z |
|
| 1 |
| value |
0.02048 |
| scoring_system |
epss |
| scoring_elements |
0.83891 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.02048 |
| scoring_system |
epss |
| scoring_elements |
0.83857 |
| published_at |
2026-04-13T12:55:00Z |
|
| 3 |
| value |
0.02048 |
| scoring_system |
epss |
| scoring_elements |
0.8389 |
| published_at |
2026-04-16T12:55:00Z |
|
| 4 |
| value |
0.02048 |
| scoring_system |
epss |
| scoring_elements |
0.83805 |
| published_at |
2026-04-02T12:55:00Z |
|
| 5 |
| value |
0.02048 |
| scoring_system |
epss |
| scoring_elements |
0.83819 |
| published_at |
2026-04-04T12:55:00Z |
|
| 6 |
| value |
0.02048 |
| scoring_system |
epss |
| scoring_elements |
0.83821 |
| published_at |
2026-04-07T12:55:00Z |
|
| 7 |
| value |
0.02048 |
| scoring_system |
epss |
| scoring_elements |
0.83845 |
| published_at |
2026-04-08T12:55:00Z |
|
| 8 |
| value |
0.02048 |
| scoring_system |
epss |
| scoring_elements |
0.83851 |
| published_at |
2026-04-09T12:55:00Z |
|
| 9 |
| value |
0.02048 |
| scoring_system |
epss |
| scoring_elements |
0.83868 |
| published_at |
2026-04-11T12:55:00Z |
|
| 10 |
| value |
0.02048 |
| scoring_system |
epss |
| scoring_elements |
0.83862 |
| published_at |
2026-04-12T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2021-29921 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
|
| fixed_packages |
|
| aliases |
CVE-2021-29921
|
| risk_score |
4.1 |
| exploitability |
0.5 |
| weighted_severity |
8.2 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-z48d-eyxz-bycq |
|
| 65 |
| url |
VCID-zh1r-7rzh-2bez |
| vulnerability_id |
VCID-zh1r-7rzh-2bez |
| summary |
cpython: Header injection in http.cookies.Morsel in Python |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2026-0672 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00158 |
| scoring_system |
epss |
| scoring_elements |
0.36748 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00158 |
| scoring_system |
epss |
| scoring_elements |
0.36659 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00158 |
| scoring_system |
epss |
| scoring_elements |
0.36779 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00158 |
| scoring_system |
epss |
| scoring_elements |
0.36615 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00158 |
| scoring_system |
epss |
| scoring_elements |
0.36667 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00158 |
| scoring_system |
epss |
| scoring_elements |
0.36683 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00158 |
| scoring_system |
epss |
| scoring_elements |
0.36692 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00158 |
| scoring_system |
epss |
| scoring_elements |
0.36658 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00158 |
| scoring_system |
epss |
| scoring_elements |
0.36632 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00158 |
| scoring_system |
epss |
| scoring_elements |
0.36677 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2026-0672 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
|
| fixed_packages |
|
| aliases |
CVE-2026-0672
|
| risk_score |
2.7 |
| exploitability |
0.5 |
| weighted_severity |
5.4 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-zh1r-7rzh-2bez |
|
| 66 |
| url |
VCID-znkr-fxtj-4uc7 |
| vulnerability_id |
VCID-znkr-fxtj-4uc7 |
| summary |
cpython: python: Python zipfile End of Central Directory (EOCD) Locator record offset not checked |
| references |
| 0 |
|
| 1 |
| reference_url |
https://api.first.org/data/v1/epss?cve=CVE-2025-8291 |
| reference_id |
|
| reference_type |
|
| scores |
| 0 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.30092 |
| published_at |
2026-04-02T12:55:00Z |
|
| 1 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.29956 |
| published_at |
2026-04-18T12:55:00Z |
|
| 2 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.3014 |
| published_at |
2026-04-04T12:55:00Z |
|
| 3 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.29954 |
| published_at |
2026-04-07T12:55:00Z |
|
| 4 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.30015 |
| published_at |
2026-04-08T12:55:00Z |
|
| 5 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.30049 |
| published_at |
2026-04-09T12:55:00Z |
|
| 6 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.30055 |
| published_at |
2026-04-11T12:55:00Z |
|
| 7 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.3001 |
| published_at |
2026-04-12T12:55:00Z |
|
| 8 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.29961 |
| published_at |
2026-04-13T12:55:00Z |
|
| 9 |
| value |
0.00114 |
| scoring_system |
epss |
| scoring_elements |
0.29977 |
| published_at |
2026-04-16T12:55:00Z |
|
|
| url |
https://api.first.org/data/v1/epss?cve=CVE-2025-8291 |
|
| 2 |
|
| 3 |
|
| 4 |
|
| 5 |
|
| 6 |
|
| 7 |
|
| 8 |
|
| 9 |
|
| 10 |
|
| 11 |
|
| 12 |
|
| 13 |
|
| 14 |
|
| 15 |
|
| 16 |
|
| 17 |
|
| 18 |
|
| 19 |
|
| 20 |
|
| 21 |
|
| 22 |
|
| 23 |
|
| 24 |
|
| 25 |
|
| 26 |
|
| 27 |
|
| 28 |
|
| 29 |
|
| 30 |
|
| 31 |
|
| 32 |
|
| 33 |
|
| 34 |
|
|
| fixed_packages |
|
| aliases |
CVE-2025-8291
|
| risk_score |
1.9 |
| exploitability |
0.5 |
| weighted_severity |
3.9 |
| resource_url |
http://public2.vulnerablecode.io/vulnerabilities/VCID-znkr-fxtj-4uc7 |
|